SLES9: Security update for IBMJava2 SDK and IBMJava2 JRE

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: IBMJava2-JRE IBMJava2-SDK For more information, please visit the referenced security advisories. More details may also be found by searching for keyword...

SLES9: Security update for IBMJava2 SDK and IBMJava2 JRE

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: IBMJava2-JRE IBMJava2-SDK For more information, please visit the referenced security advisories. More details may also be found by searching for keyword...

SLES9: Security update for Java 2

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: java2-jre java2 For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5015291 within...

RHEL 3 / 4 / 5 : java-1.4.2-ibm (RHSA-2007:0166)

Updated java-1.4.2-ibm packages to correct a security issue are now available for Red Hat Enterprise Linux 3 and 4 Extras. This update has been rated as having critical security impact by the Red Hat Security Response Team. IBM's 1.4.2 SR8 Java release includes the IBM Java 2 Runtime Environment...

RHEL 4 / 5 : java-1.5.0-ibm (RHSA-2007:0167)

java-1.5.0-ibm packages that correct a security issue are available for Red Hat Enterprise Linux 5 Supplementary and Enterprise Linux 4 Extras. This update has been rated as having critical security impact by the Red Hat Security Response Team. IBM's 1.5.0 Java release includes the IBM Java 2...

Gentoo Security Advisory GLSA 200702-07 (java)

The remote host is missing updates announced in advisory GLSA 200702-07. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Moderate: Red Hat Security Advisory: Red Hat Network Satellite Server security update

Red Hat Network Satellite Server version 5.0.2 is now available. This update includes fixes for a number of security issues in Red Hat Network Satellite Server components. This update has been rated as having moderate security impact by the Red Hat Security Response Team. During an internal...

Mac OS X : Java for Mac OS X 10.4 Release 6

The remote Mac OS X 10.4 host is running a version of Java for Mac OS X that is older than release 6. The remote version of this software contains several security vulnerabilities that may allow a rogue Java applet to escalate its privileges and to add or remove arbitrary items from the user's...

SuSE 10 Security Update : IBM Java (ZYPP Patch Number 3851)

The IBM Java JRE/SDK has been brought to release 1.4.2 SR containing several bugfixes, including following security fixes : - A buffer overflow vulnerability in the JavaTM Runtime Environment may allow an untrusted applet to elevate its privileges. For example, an applet may grant itself...

SuSE 10 Security Update : Java (ZYPP Patch Number 3844)

The Sun JAVA JDK 1.4.2 was upgraded to release 15 to fix various bugs, including the following security bugs : - Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit JDK, allows remote attackers to execute arbitrary code or cause a denial of service JVM crash via ...

SuSE 10 Security Update : Java (ZYPP Patch Number 3891)

The IBM Java JRE/SDK has been brought to release 1.4.2 SR8, containing several bugfixes, including the following security fixes : - A buffer overflow vulnerability in the JavaTM Runtime Environment may allow an untrusted applet to elevate its privileges. For example, an applet may grant itself...

openSUSE 10 Security Update : java-1_5_0-sun (java-1_5_0-sun-3832)

The Sun JAVA JDK 1.5.0 was upgraded to release 12 to fix various bugs, including the following security bugs : CVE-2007-2788 / CVE-2007-3004: Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit JDK, allows remote attackers to execute arbitrary code or cause a...

openSUSE 10 Security Update : java-1_4_2-sun (java-1_4_2-sun-3843)

The Sun JAVA JDK 1.4.2 was upgraded to release 15 to fix various bugs, including the following security bugs : CVE-2007-2788 / CVE-2007-3004: Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit JDK, allows remote attackers to execute arbitrary code or cause a...

Critical: Red Hat Security Advisory: java-1.5.0-ibm security update

java-1.5.0-ibm packages that correct a security issue are available for Red Hat Enterprise Linux 5 Supplementary and Enterprise Linux 4 Extras. This update has been rated as having critical security impact by the Red Hat Security Response Team. IBM's 1.5.0 Java release includes the IBM Java 2...

ZDI-07-005: Sun Microsystems Java GIF File Parsing Memory Corruption Vulnerability

ZDI-07-005: Sun Microsystems Java GIF File Parsing Memory Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-005.html January 16, 2007 -- CVE ID: CVE-2007-0243 -- Affected Vendor: Sun Microsystems -- Affected Products: JDK and JRE 5.0 Update 9 and earlier all platforms SD...

CVE-2007-0243

Buffer overflow in Sun JDK and Java Runtime Environment JRE 5.0 Update 9 and earlier, SDK and JRE 1.4.212 and earlier, and SDK and JRE 1.3.118 and earlier allows applets to gain privileges via a GIF image with a block with a 0 width field, which triggers memory corruption...

CVE-2007-0243

CVE-2007-0243 is a memory-corruption vulnerability in Sun JDK/JRE GIF image handling. The issue arises when parsing a GIF block with a 0 width field, allowing an attacker to potentially execute arbitrary code or gain privileges within a browser-hosted Java applet context. Affected are Sun Java De...

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-0243. Reason: This candidate is a duplicate of CVE-2007-0243. Notes: All CVE users should reference CVE-2007-0243 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

CVE-2007-0234

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-0243. Reason: This candidate is a duplicate of CVE-2007-0243. Notes: All CVE users should reference CVE-2007-0243 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

CVE-2007-0234

CVE-2007-0234 is rejected/not used and does not represent an active vulnerability entry.