RHSA-2011:1159Critical
Red Hat Security Advisory: java-1.4.2-ibm security update
🔗 CVE IDs covered (8)
📋 Description
CVE-2011-0311 — IBM JDK Class file parsing denial-of-service CVE-2011-0802 — JDK: unspecified vulnerabilities fixed in 6u26 (Sound) CVE-2011-0814 — JDK: unspecified vulnerabilities fixed in 6u26 (Sound) CVE-2011-0862 — OpenJDK: integer overflows in JPEGImageReader and font SunLayoutEngine (2D, 7013519) CVE-2011-0865 — OpenJDK: Deserialization allows creation of mutable SignedObject (Deserialization, 6618658) CVE-2011-0867 — OpenJDK: NetworkInterface information leak (Networking, 7013969) CVE-2011-0871 — OpenJDK: MediaTracker created Component instances with unnecessary privileges (Swing, 7020198) CVE-2011-3387 — java-1.4.2-ibm: DoS via class file parser in IBM Java 1.4.2.SR13.FP9
🔗 References (10)
- selfhttps://access.redhat.com/errata/RHSA-2011:1159
- externalhttps://access.redhat.com/security/updates/classification/#critical
- externalhttp://www.ibm.com/developerworks/java/jdk/alerts/
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=702349
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=706106
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=706139
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=706153
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=706248
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=711677
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_1159.json