Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2009:0445
HistoryApr 23, 2009 - 12:00 a.m.

(RHSA-2009:0445) Critical: java-1.4.2-ibm security update

2009-04-2300:00:00
access.redhat.com
22

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.972 High

EPSS

Percentile

99.8%

JSON

The IBM® 1.4.2 SR13 Java™ release includes the IBM Java 2 Runtime
Environment and the IBM Java 2 Software Development Kit.

This update fixes several vulnerabilities in the IBM Java 2 Runtime
Environment and the IBM Java 2 Software Development Kit. These
vulnerabilities are summarized on the IBM “Security alerts” page listed in
the References section. (CVE-2008-2086, CVE-2008-5339, CVE-2008-5340,
CVE-2008-5342, CVE-2008-5343, CVE-2008-5344, CVE-2008-5345, CVE-2008-5346,
CVE-2008-5348, CVE-2008-5350, CVE-2008-5351, CVE-2008-5353, CVE-2008-5354,
CVE-2008-5359, CVE-2008-5360)

All users of java-1.4.2-ibm are advised to upgrade to these updated
packages, which contain the IBM 1.4.2 SR13 Java release. All running
instances of IBM Java must be restarted for the update to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat5i386java-1.4.2-ibm-jdbc< 1.4.2.13-1jpp.1.el5java-1.4.2-ibm-jdbc-1.4.2.13-1jpp.1.el5.i386.rpm
RedHat5s390xjava-1.4.2-ibm-src< 1.4.2.13-1jpp.1.el5java-1.4.2-ibm-src-1.4.2.13-1jpp.1.el5.s390x.rpm
RedHat5s390java-1.4.2-ibm-devel< 1.4.2.13-1jpp.1.el5java-1.4.2-ibm-devel-1.4.2.13-1jpp.1.el5.s390.rpm
RedHat5s390xjava-1.4.2-ibm-demo< 1.4.2.13-1jpp.1.el5java-1.4.2-ibm-demo-1.4.2.13-1jpp.1.el5.s390x.rpm
RedHat5s390java-1.4.2-ibm< 1.4.2.13-1jpp.1.el5java-1.4.2-ibm-1.4.2.13-1jpp.1.el5.s390.rpm
RedHat5s390xjava-1.4.2-ibm< 1.4.2.13-1jpp.1.el5java-1.4.2-ibm-1.4.2.13-1jpp.1.el5.s390x.rpm
RedHat5i386java-1.4.2-ibm-plugin< 1.4.2.13-1jpp.1.el5java-1.4.2-ibm-plugin-1.4.2.13-1jpp.1.el5.i386.rpm
RedHat5ppcjava-1.4.2-ibm-devel< 1.4.2.13-1jpp.1.el5java-1.4.2-ibm-devel-1.4.2.13-1jpp.1.el5.ppc.rpm
RedHat5ppcjava-1.4.2-ibm-demo< 1.4.2.13-1jpp.1.el5java-1.4.2-ibm-demo-1.4.2.13-1jpp.1.el5.ppc.rpm
RedHat5i386java-1.4.2-ibm-devel< 1.4.2.13-1jpp.1.el5java-1.4.2-ibm-devel-1.4.2.13-1jpp.1.el5.i386.rpm
Rows per page:
1-10 of 361

Related

openvas 44
nessus 38
suse 3
redhat 7
seebug 7
securityvulns 3
ubuntu 1
fedora 2
vmware 2
prion 15
cve 15
zdi 2
saint 4
canvas 2
packetstorm 2
ubuntucve 8
checkpoint_advisories 5
threatpost 3
exploitpack 2
symantec 1
metasploit 1
exploitdb 4
gentoo 1
oracle 1
openvas
openvas
RedHat Security Advisory RHSA-2009:0445
2009-04-28 00:00:00
RedHat Security Advisory RHSA-2009:0445
2009-04-28 00:00:00
SLES9: Security update for IBM Java2 JRE and SDK
2009-10-10 00:00:00
nessus
nessus
RHEL 3 / 4 / 5 : java-1.4.2-ibm (RHSA-2009:0445)
2009-08-24 00:00:00
SuSE9 Security Update : IBM Java2 JRE and SDK (YOU Patch Number 12387)
2009-09-24 00:00:00
SuSE 10 Security Update : IBM Java 1.4.2 (ZYPP Patch Number 6136)
2009-09-24 00:00:00
suse
suse
local privilege escalation in IBMJava5-JRE,java-1_5_0-ibm
2009-01-29 14:08:00
remote code execution in IBM Java 1.4.2 and 6
2009-04-07 14:51:07
remote code execution in Sun Java
2009-01-09 15:49:38
redhat
redhat
(RHSA-2009:0015) Critical: java-1.6.0-ibm security update
2009-01-13 00:00:00
(RHSA-2009:0016) Critical: java-1.5.0-ibm security update
2009-01-13 00:00:00
(RHSA-2008:1025) Critical: java-1.5.0-sun security update
2008-12-04 00:00:00
seebug
seebug
Sun Java JDK/JRE安全更新修复多个漏洞
2008-12-09 00:00:00
Mac OS X - Java applet Remote Deserialization Remote PoC (updated)
2014-07-01 00:00:00
Sun Java Runtime and Development Kit &lt;= 6 update 10 Calendar Deserialization Exploit
2008-12-03 00:00:00
securityvulns
securityvulns
Sun Java JRE / JDK / Web Start multiple security vulnerabilities
2009-04-23 00:00:00
[USN-713-1] openjdk-6 vulnerabilities
2009-01-31 00:00:00
[Full-disclosure] CVE-2008-2086: Java Web Start File Inclusion via System Properties Override
2008-12-04 00:00:00
ubuntu
ubuntu
openjdk-6 vulnerabilities
2009-01-27 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: java-1.6.0-openjdk-1.6.0.0-7.b12.fc10
2008-12-07 04:33:22
[SECURITY] Fedora 9 Update: java-1.6.0-openjdk-1.6.0.0-0.20.b09.fc9
2008-12-07 04:27:51
vmware
vmware
VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues
2009-10-16 00:00:00
VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues
2009-10-16 00:00:00
prion
prion
Authentication flaw
2008-12-05 11:30:00
Buffer overflow
2008-12-05 11:30:00
Code injection
2008-12-05 11:30:00
cve
cve
CVE-2008-5359
2008-12-05 11:30:00
CVE-2008-5348
2008-12-05 11:30:00
CVE-2008-5343
2008-12-05 11:30:00
zdi
zdi
Sun Java AWT Library Sandbox Violation Vulnerability
2008-12-04 00:00:00
Sun Java Web Start and Applet Multiple Sandbox Bypass Vulnerabilities
2008-12-04 00:00:00
saint
saint
Java Runtime Environment JAR manifest Main Class buffer overflow
2009-02-26 00:00:00
Java Runtime Environment JAR manifest Main Class buffer overflow
2009-02-26 00:00:00
Java Runtime Environment JAR manifest Main Class buffer overflow
2009-02-26 00:00:00
canvas
canvas
Immunity Canvas: JAVA_DESERIALIZE
2008-12-05 06:30:00
Immunity Canvas: JAVA_DESERIALIZE_WIN32
2008-12-05 11:30:00
packetstorm
packetstorm
Sun Java Calendar Deserialization
2009-10-27 00:00:00
Signed Applet Social Engineering Code Exec
2010-02-05 00:00:00
ubuntucve
ubuntucve
CVE-2008-5354
2008-12-05 00:00:00
CVE-2008-5360
2008-12-05 00:00:00
CVE-2008-5359
2008-12-05 00:00:00
checkpoint_advisories
checkpoint_advisories
Sun Java Runtime Environment Abstract Windowing Toolkit Memory Corruption (CVE-2008-5359)
2010-06-23 00:00:00
Sun Java Web Start Splashscreen GIF Decoding Buffer Overflow (CVE-2008-2086)
2009-12-28 00:00:00
Sun Java Runtime Environment JAR File Processing Stack Buffer Overflow (CVE-2008-5354)
2010-07-13 00:00:00
threatpost
threatpost
Serious Mac OS X Java vulnerability disclosed
2009-05-20 17:37:46
Chorus Grows Louder to Disable Java 7 After Exploit Hits Mainstream
2012-08-30 02:03:14
Java Still a Favorite Target of Attackers
2011-11-30 19:39:18
exploitpack
exploitpack
Apple Mac OSX - Java applet Remote Deserialization Remote (2)
2009-05-20 00:00:00
Sun Java Runtime and Development Kit 6 Update 10 - Calendar Deserialization (Metasploit)
2008-12-03 00:00:00
symantec
symantec
Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
2008-12-03 00:00:00
metasploit
metasploit
Sun Java Calendar Deserialization Privilege Escalation
2009-12-15 20:37:15
exploitdb
exploitdb
Sun Java Runtime and Development Kit 6 Update 10 - Calendar Deserialization (Metasploit)
2008-12-03 00:00:00
Apple Mac OSX - Java applet Remote Deserialization Remote (2)
2009-05-20 00:00:00
Signed Applet Social Engineering - Code Execution (Metasploit)
2011-01-08 00:00:00
gentoo
gentoo
Sun JDK/JRE: Multiple vulnerabilities
2009-11-17 00:00:00
oracle
oracle
cpuapr2009.html
2009-04-14 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.972 High

EPSS

Percentile

99.8%

JSON
Related for RHSA-2009:0445
openvas44nessus38suse3redhat7seebug7securityvulns3ubuntu1fedora2vmware2prion15cve15zdi2saint4canvas2packetstorm2ubuntucve8checkpoint_advisories5threatpost3exploitpack2symantec1metasploit1exploitdb4gentoo1oracle1