Probably guard intern() instead would be enough? It would be enough to stop the broken string from pollute the whole process permanently.