15 matches found
Linux Distros Unpatched Vulnerability : CVE-2009-0793
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cmsxform.c in LittleCMS aka lcms or liblcms 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service NULL pointer...
Oracle Linux 5 : java-1.6.0-openjdk (ELSA-2009-0377)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-0377 advisory. 1:1.6.0.0-0.30.b09.0.1.el5 - Add oracle-enterprise.patch 1:1.6.0.0-0.30.b09 - Updated java-1.6.0-openjdk-lcms.patch 1:1.6.0.0-0.29.b09 - Updated...
Ubuntu 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : lcms vulnerability (USN-1043-1)
It was discovered that a NULL pointer dereference in the code for handling transformations of monochrome profiles could allow an attacker to cause a denial of service through a specially crafted image. CVE-2009-0793. Note that Tenable Network Security has extracted the preceding description block...
Mandriva Security Advisory MDVSA-2009:121-1 (lcms)
The remote host is missing an update to lcms announced via advisory MDVSA-2009:121-1. OpenVAS Vulnerability Test $Id: mdksa20091211.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:121-1 lcms Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...
openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1252)
The XML signature checker did not impose limits on the minimum length of HMAC signatures in XML documentes. Attackers could therefore specify a length of e.g. 1 to make the signature appear valid and therefore effectively bypass verification of XML documents. CVE-2009-0217 The WebStart component...
openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1252)
The XML signature checker did not impose limits on the minimum length of HMAC signatures in XML documentes. Attackers could therefore specify a length of e.g. 1 to make the signature appear valid and therefore effectively bypass verification of XML documents. CVE-2009-0217 The WebStart component...
Fedora Core 10 FEDORA-2009-3967 (lcms)
The remote host is missing an update to lcms announced via advisory FEDORA-2009-3967. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Fedora 10 : java-1.6.0-openjdk-1.6.0.0-15.b14.fc10 (2009-3426)
Fixes remaining LCMS issue, which resolves a TCK failure Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...
Gentoo Security Advisory GLSA 200904-19 (littlecms)
The remote host is missing updates announced in advisory GLSA 200904-19. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Fedora Core 10 FEDORA-2009-3426 (java-1.6.0-openjdk)
The remote host is missing an update to java-1.6.0-openjdk announced via advisory FEDORA-2009-3426. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...
Fedora Core 9 FEDORA-2009-3425 (java-1.6.0-openjdk)
The remote host is missing an update to java-1.6.0-openjdk announced via advisory FEDORA-2009-3425. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...
Fedora Core 10 FEDORA-2009-3426 (java-1.6.0-openjdk)
The remote host is missing an update to java-1.6.0-openjdk announced via advisory FEDORA-2009-3426. OpenVAS Vulnerability Test $Id: fcore20093426.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3426 java-1.6.0-openjdk Authors: Thomas Reinke Copyrigh...
[SECURITY] [DSA 1769-1] New openjdk-6 packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1769-1 [email protected] http://www.debian.org/security/ Florian Weimer April 11, 2009 http://www.debian.org/security/faq -...
CVE-2009-0793
CVE-2009-0793 affects LittleCMS (lcms) 1.18, specifically cmsxform.c handling transformations of monochrome profiles. The issue enables a remote attacker to cause a denial of service (NULL pointer dereference and application crash) via a crafted image that triggers incorrect code execution in mon...
java security update
CentOS Errata and Security Advisory CESA-2009:0377 Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. These packages provide th...