Google Git
Sign in
eclipse / gerrit / www.eclipse.org / mat / 38f48ea2ed73574fce75055a69b96df6ad5647a3 / . / 1.11.0 / noteworthy.html
blob: e67f270cb838207a4c9e7ff4b0018d7be6f8626f [file] [log] [blame]
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xml:lang="en-us" lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<meta name="DC.Type" content="reference"/>
<meta name="DC.Title" content="New and Noteworthy"/>
<meta name="abstract" content="Here are descriptions of some of the more interesting or significant changes made to Eclipse Memory Analyzer for the 1.11 release."/>
<meta name="description" content="Here are descriptions of some of the more interesting or significant changes made to Eclipse Memory Analyzer for the 1.11 release."/>
<meta name="copyright" content="Copyright (c) 2008, 2020 SAP AG, IBM Corporation and others. All rights reserved. This program and the accompanying materials are made available under the terms of the Eclipse Public License v1.0 which accompanies this distribution, and is available at http://www.eclipse.org/legal/epl-v10.html " type="primary"/>
<meta name="DC.Rights.Owner" content="Copyright (c) 2008, 2020 SAP AG, IBM Corporation and others. All rights reserved. This program and the accompanying materials are made available under the terms of the Eclipse Public License v1.0 which accompanies this distribution, and is available at http://www.eclipse.org/legal/epl-v10.html " type="primary"/>
<meta name="DC.Format" content="XHTML"/>
<meta name="DC.Identifier" content="ref_noteworthy"/>
<meta name="DC.Language" content="en-us"/>
<link rel="stylesheet" type="text/css" href="styles/commonltr.css"/>
<title>New and Noteworthy</title>
</head>
<body id="ref_noteworthy">
<h1 class="title topictitle1">New and Noteworthy</h1>
<div class="body refbody"><p class="shortdesc">Here are descriptions of some of the more interesting or
significant changes made to <span class="keyword">Eclipse Memory Analyzer</span> for the 1.11 release.
</p>
<div class="section"><h2 class="title sectiontitle">Enhancements and fixes</h2>
<ul class="ul">
<li class="li">The snapshot comparison queries have been enhanced to properly
compare trees as well as tables.
Also, a leak suspect report can be run on two snapshots to show possible memory leaks
using the difference between the two snapshots of the memory usage of objects and components.</li>
<li class="li">Memory Analyzer now has a configuration option to allow an attempt to analyse
huge heap dumps, bigger than Memory Analyzer could handle in previous version. It does this
by optionally discarding some objects from the heap dump while building the snapshot, with
the hope that the important objects have not been discarded.</li>
<li class="li">Stand-alone Eclipse Memory Analyzer is now based on Eclipse 2020-03 which
may give a slightly improved user interface compared to previous versions.
As a consequence, stand-alone Eclipse Memory Analyzer is only available for
the following platforms.
<ul class="ul">
<li class="li">Windows (x86_64)</li>
<li class="li">Mac OS X (Mac/Cocoa x86_64)</li>
<li class="li">Linux (x86_64/GTK+)</li>
<li class="li">Linux (PPC64LE/GTK+)</li>
</ul>
The macOS build is now signed and notarized.
</li>
</ul>
</div>
<div class="section"><h2 class="title sectiontitle">Fix details</h2>
<ul class="ul">
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=305154" target="_blank">305154</a>
Extend the programming model for MAT Queries - enable programming
of queries doing comparison</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=324970" target="_blank">324970</a>
Provide a mechanism to continue manual analysis from MAT's
automatic reports</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=330074" target="_blank">330074</a>
null returns from SnapshotImpl methods</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=347648" target="_blank">347648</a>
Retained size column is not compared</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=558593" target="_blank">558593</a>
Failing to write a report ZIP causes the report query to fail</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=561460" target="_blank">561460</a>
More comparison queries</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=561776" target="_blank">561776</a>
Improve handling of FINALIZABLE and UNFINALIZED</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=561976" target="_blank">561976</a>
Improve duplicate classes query</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=562926" target="_blank">562926</a>
Use simultaneous release repo for Hamcrest</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=562972" target="_blank">562972</a>
Tests more queries and improve collection queries</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=563960" target="_blank">563960</a>
Requested length of new long exceeds limit of 2,147,483,639</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=565502" target="_blank">565502</a>
Poor performance with bad hashing on HashMapIntObject</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=566282" target="_blank">566282</a>
Cannot install on latest MacOS version Catalina 10.15</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=566673" target="_blank">566673</a>
java.lang.ArrayIndexOutOfBoundsException in
GarbageCleaner.java</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=566917" target="_blank">566917</a>
Occasional poor performance with GZip HPROF</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=567048" target="_blank">567048</a>
Add detailed progress to group by value query</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=567070" target="_blank">567070</a>
Optimize progress monitor calculation</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=567256" target="_blank">567256</a>
Improve help and minor updates</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=567433" target="_blank">567433</a>
Update MAT version to 1.11.0</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=567564" target="_blank">567564</a>
Single query report</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=567917" target="_blank">567917</a>
Add some more network object name resolvers</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=568217" target="_blank">568217</a>
Better links for stack frame for thread overview</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=305152" target="_blank">305152</a>
Improvements to the displayed comparison results</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=346513" target="_blank">346513</a>
TextResult link with target=_blank doesn't work</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=537252" target="_blank">537252</a>
Cheatsheet fixes</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=560704" target="_blank">560704</a>
Class cast exception opening Path To GC Roots query</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=563793" target="_blank">563793</a>
Feature request: Add lock information to Thread Overview and Stacks
query</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=565962" target="_blank">565962</a>
Show the thread and stack frame holding the leaked objects</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=567414" target="_blank">567414</a>
Build standalone MAT packages with a newer Eclipse release</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=567533" target="_blank">567533</a>
Reports have a white background with dark theme</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=567758" target="_blank">567758</a>
Add Close to the left and right option to tabs</li>
<li class="li">Fix for <a class="xref" href="https://bugs.eclipse.org/bugs/show_bug.cgi?id=568352" target="_blank">568352</a>
Better JDT integration</li>
</ul>
</div>
<div class="section"><h2 class="title sectiontitle">Security fixes</h2>
Memory Analyzer 1.11 includes the security fixes first included in Memory Analyzer 1.9.2.
We highly recommend users of Eclipse Memory Analyzer version 1.9.1 or earlier to update to version 1.11.0 (or 1.10.0 or 1.9.2) or subsequent versions.
<dl class="dl">
<dt class="dt dlterm"><a class="xref" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17634" target="_blank">CVE-2019-17634</a></dt>
<dd class="dd"><dl class="dl">
<dt class="dt dlterm">PROBLEMTYPE</dt>
<dd class="dd">CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')</dd>
<dt class="dt dlterm">DESCRIPTION</dt>
<dd class="dd">Eclipse Memory Analyzer version 1.9.1 and earlier is subject to a cross site scripting (XSS) vulnerability when generating an HTML report from a malicious heap dump. The user must chose to download, open the malicious heap dump and generate an HTML report for the problem to occur. The heap dump could be specially crafted, or could come from a crafted application or from an application processing malicious data. The vulnerability is present when a report is generated and opened from the Memory Analyzer graphical user interface, or when a report generated in batch mode is then opened in Memory Analyzer or by a web browser. The vulnerability could possibly allow code execution on the local system when the report is opened in Memory Analyzer.</dd>
</dl>
</dd>
<dt class="dt dlterm"><a class="xref" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17635" target="_blank">CVE-2019-17635</a></dt>
<dd class="dd"><dl class="dl">
<dt class="dt dlterm">PROBLEMTYPE</dt>
<dd class="dd">CWE-502: Deserialization of Untrusted Data</dd>
<dt class="dt dlterm">DESCRIPTION</dt>
<dd class="dd">Eclipse Memory Analyzer version 1.9.1 and earlier is subject to a deserialization vulnerability if an index file of a parsed heap dump is replaced by a malicious version and the heap dump is reopened in Memory Analyzer. The user must chose to reopen an already parsed heap dump with an untrusted index for the problem to occur. The problem can be averted if the index files from an untrusted source are deleted and the heap dump is opened and reparsed. Also some local configuration data is subject to a deserialization vulnerability if the local data were to be replaced with a malicious version. This can be averted if the local configuration data stored on the file system cannot be changed by an attacker. The vulnerability could possibly allow code execution on the local system.</dd>
</dl>
</dd>
</dl>
</div>
<div class="section"><h2 class="title sectiontitle">New and Noteworthy for Memory Analyzer 1.10</h2>
<p class="p">
The New and Noteworthy document for version 1.10 is available
<a class="xref" href="http://www.eclipse.org/mat/1.10.0/noteworthy.html">here</a>.
</p>
</div>
</div>
</body>
</html>