Fedora 13 : java-1.6.0-openjdk-1.6.0.0-50.1.8.7.fc13 (2011-1631)

NASLDB: Fedora 13 : java-1.6.0-openjdk-1.6.0.0-50.1.8.7.fc13 (2011-1631)

General

ID: 52005
Name: Fedora 13 : java-1.6.0-openjdk-1.6.0.0-50.1.8.7.fc13 (2011-1631)

Summary: Checks rpm output for the updated package

Credits: Tenable Network Security, Inc.

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: –

Port: 0
Family: Fedora Local Security Checks
Type: Local

Description

This update fixes the following security issues :

S6378709, CVE-2010-4465: AWT event dispatch does not support framework
code

S6854912, CVE-2010-4465: Security issue with the clipboard access in
Applets

S6878713, CVE-2010-4469: Verifier heap corruption, relating to
backward jsrs

S6907662, CVE-2010-4465: System clipboard should ensure access
restrictions

S6927050, CVE-2010-4470: Features set on SchemaFactory not inherited
by Validator

S6981922, CVE-2010-4448: DNS cache poisoning by untrusted applets

S6983554, CVE-2010-4450: (launcher) Fix empty user’s LD_LIBRARY_PATH
environment variable in the launcher

S6985453, CVE-2010-4471: Font.createFont may expose some system
properties in exception text

S6994263, CVE-2010-4472: Untrusted code can replace JRE’s XML DSig
Transform or C14N algorithm implementations

RH677332, CVE-2011-0706: IcedTea multiple signers privilege escalation

Exploiting

Exploit Available: –
Exploitability Ease: –

Sources

CVE: CVE-2010-4448
OSVDB: –
Bugtraq: –
scipID: –

Timeline

Vulnerability Disclosure: –
Patch Release: 2011/02/16
Plugin Release: 2011/02/17

Plugin

Version: 1.6
Filename: fedora_2011-1631.nasl
Filesize: 3621 bytes
MD5 Hash: e752e44b378e55a8c8721ffeda46599c

Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list
Dependencies: "ssh_get_info.nasl"

Letzte Plugins

Letzte Plugins

scip AG