SuSE 10 Security Update : IBM Java 1.4.2 (ZYPP Patch Number 7908) (BEAST)

IBM Java 1.4.2 SR13 FP11 has been released and contains various security fixes. http://www.ibm.com/developerworks/java/jdk/alerts/ http://www.mozilla.org/en-US/firefox/10.0/releasenotes/ CVEs fixed: CVE-2011-3547 / CVE-2011-3548 / CVE-2011-3549 / CVE-2011-3552 / CVE-2011-3545 / CVE-2011-3556 /...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 7926) (BEAST)

IBM Java 1.6.0 SR10 has been released fixing the following CVE's : - CVE-2011-3389 - CVE-2011-3516 - CVE-2011-3521 - CVE-2011-3544 - CVE-2011-3545 - CVE-2011-3546 - CVE-2011-3547 - CVE-2011-3548 - CVE-2011-3549 - CVE-2011-3550 - CVE-2011-3551 - CVE-2011-3552 - CVE-2011-3553 - CVE-2011-3554 -...

Critical: Red Hat Security Advisory: java-1.6.0-ibm security update

Updated java-1.6.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring...

Critical: Red Hat Security Advisory: java-1.4.2-ibm security update

Updated java-1.4.2-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 4 Extras and Red Hat Enterprise Linux 5 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 7440)

IBM Java 1.4.2 SR13 was updated to FP8 to fix various bugs and security issues. The following security issues were fixed : - The kgacceptkrb5 function in krb5/acceptseccontext.c in the GSS-API library in MIT Kerberos 5 aka krb5 through 1.7.1 and 1.8 before 1.8.2, as used in kadmind and other...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 7504)

IBM Java 1.4.2 was updated to SR13 FP9, fixing bugs and security issues. More information can be found on the IBM JDK Alerts page : http://www.ibm.com/developerworks/java/jdk/alerts/ %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. if...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 7442)

IBM Java 5 was updated to SR 12 FP 4 fixing various security issues. For more details, please check the IBM JDK Alerts page : http://www.ibm.com/developerworks/java/jdk/alerts/ %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. if NASLLEVEL...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 7627)

IBM Java 1.6.0 SR9-FP2 fixes several of bugs and thew following security issues : - An unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.231 and earlier allows remote untrusted Java Web Start...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 7862)

IBM Java 5 was updated to SR13, fixing various bugs and security issues. Security issues addressed are tracked by : CVE-2011-3545 / CVE-2011-3547 / CVE-2011-3548 / CVE-2011-3549 / CVE-2011-3552 / CVE-2011-3554 / CVE-2011-3557 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text descripti...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 7698)

IBM Java 1.4.2 SR 13 Fixpack 10 has been released and fixes various bugs and security issues. The following security issues have been fixed : - Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.231...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 7650)

IBM Java 1.5.0 SR12 FP5 has been released fixing bugs and security issues. The following security issues were fixed : - Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.231 and earlier allows remo...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 7443)

IBM Java 6 SR9 FP1 was updated to fix a critical security bug in float number handling. - The Java Runtime Environment hangs forever when converting '2.2250738585072012e-308' to a binary floating-point number. CVE-2010-4476 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description...

Moderate: Red Hat Security Advisory: java-1.4.2-ibm-sap security update

Updated java-1.4.2-ibm-sap packages that fix several security issues are now available for Red Hat Enterprise Linux 4, 5 and 6 for SAP. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

java-1.4.2-ibm: DoS via class file parser in IBM Java 1.4.2.SR13.FP9

The class file parser in IBM Java 1.4.2 SR13 FP9 allows remote authenticated users to cause a denial of service memory consumption or an infinite loop via a crafted attribute length field in a class file, related to validation of a length field at the wrong time, a different vulnerability than...

CVE-2011-3387

The class file parser in IBM Java 1.4.2 SR13 FP9 allows remote authenticated users to cause a denial of service memory consumption or an infinite loop via a crafted attribute length field in a class file, related to validation of a length field at the wrong time, a different vulnerability than...

Design/Logic Flaw

The class file parser in IBM Java 1.4.2 SR13 FP9 allows remote authenticated users to cause a denial of service memory consumption or an infinite loop via a crafted attribute length field in a class file, related to validation of a length field at the wrong time, a different vulnerability than...

Buffer overflow

The class file parser in IBM Java before 1.4.2 SR13 FP9, as used in IBM Runtimes for Java Technology 5.0.0 before SR13 and 6.0.0 before SR10, allows remote authenticated users to cause a denial of service JVM segmentation fault, and possibly memory consumption or an infinite loop via a crafted...

CVE-2011-3387

CVE-2011-3387 targets IBM Java 1.4.2 SR13 FP9 (IBM Runtimes for Java Technology 5.0.0 before SR13 and 6.0.0 before SR10). A denial-of-service is caused by a crafted class file attribute length field, due to validation timing, leading to memory consumption or an infinite loop. The issue is distinc...

CVE-2011-3387

The class file parser in IBM Java 1.4.2 SR13 FP9 allows remote authenticated users to cause a denial of service memory consumption or an infinite loop via a crafted attribute length field in a class file, related to validation of a length field at the wrong time, a different vulnerability than...

SuSE9 Security Update : IBM Java JRE and SDK (YOU Patch Number 12819)

IBM Java 1.4.2 SR 13 Fixpack 10 has been released and fixes various bugs and security issues. The following security issues were fixed : - Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.231 and...