Denial Of Service (DoS)

The IcedTea-Web project provides a Java web browser plug-in and an implementation of Java Web Start, which is based on the Netx project. It also contains a configuration tool for managing deployment settings for the plug-in and Web Start implementations. An uninitialized pointer use flaw was foun...

Oracle: Security Advisory (ELSA-2012-1132)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : icedtea-web (openSUSE-SU-2012:0981-1)

update to 1.2.1 bnc773458 - Security Updates - CVE-2012-3422, RH840592: Potential read from an uninitialized memory location - CVE-2012-3423, RH841345: Incorrect handling of not 0-terminated strings - NetX - PR898: signed applications with big jnlp-file doesn't start webstart affect like 'frozen'...

openSUSE Security Update : icedtea-web (openSUSE-SU-2012:0982-1)

This update of icedtea-web fixed multiple hewap buffer overflows. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-513. The text description of this plugin is C SUSE LLC...

openSUSE Security Update : icedtea-web (openSUSE-SU-2013:0893-1)

Changes in icedtea-web with update to 1.4 bnc818768 : - Added cs, de, pl localization - Splash screen for javaws and plugin - Better error reporting for plugin via Error-splash-screen - All IcedTea-Web dialogues are centered to middle of active screen - Download indicator made compact for more th...

Oracle Linux 6 : icedtea-web (ELSA-2012-1132)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-1132 advisory. - Resolves: CVE-2012-3422 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has...

CentOS 6 : icedtea-web (CESA-2012:1132)

Updated icedtea-web packages that fix two security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

SuSE 11.2 Security Update : icedtea-web (SAT Patch Number 7742)

This update of icedtea-web fixes several bugs and security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. if NASLLEVEL 3000 exit0;...

Fedora Update for icedtea-web FEDORA-2013-5925

Check for the Version of icedtea-web OpenVAS Vulnerability Test Fedora Update for icedtea-web FEDORA-2013-5925 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

SuSE Update for icedtea-web openSUSE-SU-2012:0981-1 (icedtea-web)

Check for the Version of icedtea-web OpenVAS Vulnerability Test $Id: gbsuse201209811.nasl 8313 2018-01-08 07:02:11Z teissa $ SuSE Update for icedtea-web openSUSE-SU-2012:0981-1 icedtea-web Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.ne...

openSUSE: Security Advisory for icedtea-web (openSUSE-SU-2012:0981-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for icedtea-web FEDORA-2012-17762

Check for the Version of icedtea-web OpenVAS Vulnerability Test Fedora Update for icedtea-web FEDORA-2012-17762 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

Fedora Update for icedtea-web FEDORA-2012-17745

Check for the Version of icedtea-web OpenVAS Vulnerability Test Fedora Update for icedtea-web FEDORA-2012-17745 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

Fedora Update for icedtea-web FEDORA-2012-17762

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for icedtea-web FEDORA-2012-17745

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 17 : icedtea-web-1.3-1.fc17 (2012-14316)

This update brings IcedTea-Web 1.3 to Fedora. From Red Hat Bugzilla, it fixes rhbz720836. Additionally, it provides numerous other bug fixes and enhancements, many of which are listed here : https://dbhole.wordpress.com/2012/09/05/icedtea-web-1-3-released/ - Updated to 1.2.1 - Resolves:...

Fedora Update for icedtea-web FEDORA-2012-14316

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for icedtea-web FEDORA-2012-14316

Check for the Version of icedtea-web OpenVAS Vulnerability Test Fedora Update for icedtea-web FEDORA-2012-14316 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

icedtea-web: Update to 1.2.1 (bnc#) (important)

update to 1.2.1 bnc773458 - Security Updates CVE-2012-3422, RH840592: Potential read from an uninitialized memory location CVE-2012-3423, RH841345: Incorrect handling of not 0-terminated strings - NetX PR898: signed applications with big jnlp-file doesn't start webstart affect like "frozen"...

CVE-2012-3422

The getFirstInTableInstance function in the IcedTea-Web plugin before 1.2.1 returns an uninitialized pointer when the instancetoidmap hash is empty, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted web page, which causes an...