| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 28 Jun 2011 13:11:29 -0700 From: Apple Product Security <product-security-noreply@...ts.apple.com> To: security-announce@...ts.apple.com Subject: APPLE-SA-2011-06-28-1 Java for Mac OS X 10.6 Update 5 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-06-28-1 Java for Mac OS X 10.6 Update 5 Java for Mac OS X 10.6 Update 5 is now available and addresses the following: Java Available for: Mac OS X v10.6.6 and later, Mac OS X Server v10.6.6 and later Impact: Multiple vulnerabilities in Java 1.6.0_24 Description: Multiple vulnerabilities exist in Java 1.6.0_24, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_26. Further information is available via the Java website at http://java.sun.com/javase/6/webnotes/ReleaseNotes.html CVE-ID CVE-2011-0802 CVE-2011-0814 CVE-2011-0862 CVE-2011-0863 CVE-2011-0864 CVE-2011-0865 CVE-2011-0867 CVE-2011-0868 CVE-2011-0869 CVE-2011-0871 CVE-2011-0873 Java for Mac OS X 10.6 Update 5 may be obtained from the Software Update pane in System Preferences, or Apple's Software Downloads web site: http://www.apple.com/support/downloads/ The download file is named: JavaForMacOSX10.6Update5.dmg Its SHA-1 digest is: 242a3af116c381e091ebee1ddd28beb36c1b4b62 Information will also be posted to the Apple Security Updates web site: http://support.apple.com/kb/HT1222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (Darwin) iQEcBAEBAgAGBQJOChyJAAoJEGnF2JsdZQeeI0MH/jH3W2A/Q+MFlMlS/rcmDyWo 7DU1E6vjEQru6X+AbsxVBXZPYgNfdWLJ/O7AQ++P8G3xEX+yCGTlSmwxSQ5w94dl yCXh85b4lGa9x8CCDt4FP3SnQFZ80cn/8kfnh8qS5qapiCNX7mC+H9B3sePuo1/g 0Br0lZWLKMvmRGToM1LFAor7blrKCM2N4ETFcG4O2V5g4AY+p73IZruXgzbElZlU H0l7xgpc0a+d3QFM/LrZCVkxNbBaooCCHlEgqhwRwAGmBDcVqyTEg2DQBneThQLH y7PnUZ+JXO1BC81VUFuTX59AHSXX329ixBsFbhgOlf2dYBNZOLbmuM2mw8smUI8= =fAgH -----END PGP SIGNATURE-----
Powered by blists - more mailing lists