There is an unsynchronized code path from javax.crypto.Cipher to the WeakHashMap used by JceSecurity to store class/codebase mappings. The call stack is: JceSecurity.getCodeBase JceSecurityManager.getCryptoPermission Cipher.getConfiguredPermission (various methods of Cipher)
|