EUVD-2011-0721

Malware in sbrugna...

Ubuntu 10.10 : openjdk-6b18 vulnerabilities (USN-1079-3)

USN-1079-2 fixed vulnerabilities in OpenJDK 6 for armel ARM architectures in Ubuntu 9.10 and Ubuntu 10.04 LTS. This update fixes vulnerabilities in OpenJDK 6 for armel ARM architectures for Ubuntu 10.10. It was discovered that untrusted Java applets could create domain name resolution cache...

Ubuntu 9.10 / 10.04 LTS : openjdk-6b18 vulnerabilities (USN-1079-2)

USN-1079-1 fixed vulnerabilities in OpenJDK 6 for non-armel ARM architectures. This update provides the corresponding updates for OpenJDK 6 for use with the armel ARM architectures. In order to build the armel ARM OpenJDK 6 update for Ubuntu 10.04 LTS, it was necessary to rebuild binutils and...

Debian DSA-2224-1 : openjdk-6 - several vulnerabilities

Several security vulnerabilities were discovered in OpenJDK, an implementation of the Java platform. - CVE-2010-4351 The JNLP SecurityManager returns from the checkPermission method instead of throwing an exception in certain circumstances, which might allow context-dependent attackers to bypass...

[SECURITY] [DSA 2224-1] openjdk-6 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2224-1 [email protected] http://www.debian.org/security/ Florian Weimer April 20, 2011 http://www.debian.org/security/faq -...

Ubuntu Update for openjdk-6 vulnerabilities USN-1079-1

Ubuntu Update for Linux kernel vulnerabilities USN-1079-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10791.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for openjdk-6 vulnerabilities USN-1079-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...

USN-1079-1: OpenJDK 6 vulnerabilities

It was discovered that untrusted Java applets could create domain name resolution cache entries, allowing an attacker to manipulate name resolution within the JVM. CVE-2010-4448 It was discovered that the Java launcher did not did not properly setup the LDLIBRARYPATH environment variable. A local...

Authentication flaw

The JNLPClassLoader class in IcedTea-Web before 1.0.1, as used in OpenJDK Runtime Environment 1.6.0, allows remote attackers to gain privileges via unknown vectors related to multiple signers and the assignment of "an inappropriate security descriptor."...

CVE-2011-0706

CVE-2011-0706 affects the JNLPClassLoader in IcedTea-Web (used with OpenJDK Runtime Environment 1.6.0). The issue allows remote attackers to gain privileges via vectors related to handling multiple signers and the assignment of an inappropriate security descriptor. The vulnerability is tied to Ic...

PT-2011-2572 · Icedtea +1 · Icedtea-Web +1

Name of the Vulnerable Software and Affected Versions: IcedTea-Web versions prior to 1.0.1 OpenJDK Runtime Environment version 1.6.0 Description: The issue allows remote attackers to gain privileges via unknown vectors related to multiple signers and the assignment of an inappropriate security...

CVE-2011-0706

The JNLPClassLoader class in IcedTea-Web before 1.0.1, as used in OpenJDK Runtime Environment 1.6.0, allows remote attackers to gain privileges via unknown vectors related to multiple signers and the assignment of "an inappropriate security descriptor."...