1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2010-6039

[FEDORA-2010-6039] Fedora 11: java-1.6.0-openjdk

Severity Critical
Affected Packages 1
CVEs 17
Info Packages References Vulnerabilities

Add latest security patches.

Package Affected Version
pkg:rpm/fedora/java-1.6.0-openjdk?distro=fedora-11 < 1.6.0.0.34.b17.fc11
ID
FEDORA-2010-6039
Severity
critical
Severity from
CVE-2010-0840
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2010-6039
Published
2010-04-09T01:32:00
(14 years ago)
Modified
2010-04-09T01:32:00
(14 years ago)
Rights
Copyright 2010 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 575760 Bug #575760 - CVE-2010-0092 OpenJDK AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error (6888149) https://bugzilla.redhat.com/show_bug.cgi?id=575760
Bugzilla 575764 Bug #575764 - CVE-2010-0093 OpenJDK System.arraycopy unable to reference elements beyond Integer.MAX_VALUE bytes (6892265) https://bugzilla.redhat.com/show_bug.cgi?id=575764
Bugzilla 575775 Bug #575775 - CVE-2010-0845 OpenJDK No ClassCastException for HashAttributeSet constructors if run with -Xcomp (6894807) https://bugzilla.redhat.com/show_bug.cgi?id=575775
Bugzilla 575740 Bug #575740 - CVE-2010-0084 OpenJDK Policy/PolicyFile leak dynamic ProtectionDomains. (6633872) https://bugzilla.redhat.com/show_bug.cgi?id=575740
Bugzilla 575756 Bug #575756 - CVE-2010-0091 OpenJDK Unsigned applet can retrieve the dragged information before drop action occurs(6887703) https://bugzilla.redhat.com/show_bug.cgi?id=575756
Bugzilla 575871 Bug #575871 - CVE-2010-0847 OpenJDK ImagingLib arbitrary code execution vulnerability (6914866) https://bugzilla.redhat.com/show_bug.cgi?id=575871
Bugzilla 575865 Bug #575865 - CVE-2010-0848 OpenJDK AWT Library Invalid Index Vulnerability (6914823) https://bugzilla.redhat.com/show_bug.cgi?id=575865
Bugzilla 575769 Bug #575769 - CVE-2010-0094 OpenJDK Deserialization of RMIConnectionImpl objects should enforce stricter checks (6893947) https://bugzilla.redhat.com/show_bug.cgi?id=575769
Bugzilla 575861 Bug #575861 - OpenJDK Application can modify command array in ProcessBuilder (6910590) https://bugzilla.redhat.com/show_bug.cgi?id=575861
Bugzilla 575808 Bug #575808 - CVE-2010-0838 OpenJDK CMM readMabCurveData Buffer Overflow Vulnerability (6899653) https://bugzilla.redhat.com/show_bug.cgi?id=575808
Bugzilla 575772 Bug #575772 - CVE-2010-0095 OpenJDK Subclasses of InetAddress may incorrectly interpret network addresses (6893954) https://bugzilla.redhat.com/show_bug.cgi?id=575772
Bugzilla 575755 Bug #575755 - CVE-2010-0088 OpenJDK Inflater/Deflater clone issues (6745393) https://bugzilla.redhat.com/show_bug.cgi?id=575755
Bugzilla 575789 Bug #575789 - OpenJDK ObjectIdentifer.equals is not capable of detecting incorrectly encoded CommonName OIDs (6898622) https://bugzilla.redhat.com/show_bug.cgi?id=575789
Bugzilla 575846 Bug #575846 - CVE-2010-0840 OpenJDK Applet Trusted Methods Chaining Privilege Escalation Vulnerability (6904691) https://bugzilla.redhat.com/show_bug.cgi?id=575846
Bugzilla 575818 Bug #575818 - CVE-2010-0837 OpenJDK JAR "unpack200" must verify input parameters (6902299) https://bugzilla.redhat.com/show_bug.cgi?id=575818
Bugzilla 575745 Bug #575745 - OpenJDK ThreadGroup finalizer allows creation of false root ThreadGroups (6639665) https://bugzilla.redhat.com/show_bug.cgi?id=575745
Bugzilla 575736 Bug #575736 - CVE-2010-0082 OpenJDK Loader-constraint table allows arrays instead of only the base-classes (6626217) https://bugzilla.redhat.com/show_bug.cgi?id=575736
Bugzilla 533125 Bug #533125 - CVE-2009-3555 TLS: MITM attacks via session renegotiation https://bugzilla.redhat.com/show_bug.cgi?id=533125
Bugzilla 575854 Bug #575854 - CVE-2010-0841 OpenJDK JPEGImageReader stepX Integer Overflow Vulnerability (6909597) https://bugzilla.redhat.com/show_bug.cgi?id=575854
Bugzilla 575747 Bug #575747 - CVE-2010-0085 OpenJDK File TOCTOU deserialization vulnerability (6736390) https://bugzilla.redhat.com/show_bug.cgi?id=575747
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/java-1.6.0-openjdk?distro=fedora-11 fedora java-1.6.0-openjdk < 1.6.0.0.34.b17.fc11 fedora-11
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date