On Tue, Jul 7, 2009 at 11:46 AM, Rick DeNatale<rick.denatale / gmail.com> wrote:
> On the other hand, I'm not sure that the bigdecimal DOS bug is really
> that much of an exposure. Unless I misunderstood him, Charlie Nutter
> (of JRuby fame) posted somewhere that Java has had the same issue for
> quite some time.

It does...and I patched around one vector for it, but the fact that
it's been possible to have this same sort of "infinite execution DOS"
on the JVM makes me think it's not that big a deal.

- Charlie