Difference between revisions of "Code Correctness: Erroneous finalize() Method"
From OWASP
Weilin Zhong (talk | contribs) |
Weilin Zhong (talk | contribs) (→Examples) |
||
| Line 15: | Line 15: | ||
The following method omits the call to super.finalize(). | The following method omits the call to super.finalize(). | ||
| − | + | protected void finalize() { | |
| − | + | discardNative(); | |
| − | + | } | |
==References== | ==References== | ||
Revision as of 13:13, 18 July 2006
- This article includes content generously donated to OWASP by
This is a Vulnerability. To view all vulnerabilities, please see the Vulnerability Category page.
Abstract
This finalize() method does not call super.finalize().
Description
The Java Language Specification states that it is a good practice for a finalize() method to call super.finalize().[1]
Examples
The following method omits the call to super.finalize().
protected void finalize() {
discardNative();
}
References
[1] J. Gosling, B. Joy, G. Steele, G. Bracha. The Java Language Specification, Second Edition. Addison-Wesley, 2000.
