lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <472525e8.xO29vdi4iDHreg+5%foresight-security-noreply@foresightlinux.org>
Date: Sun, 28 Oct 2007 16:14:32 -0800
From: Foresight Linux Essential Announcement Service
	<foresight-security-noreply@...esightlinux.org>
To: foresight-security-announce@...ts.rpath.org
Cc: lwn@....net, security-alerts@...uxsecurity.com, bugtraq@...urityfocus.com,
	full-disclosure@...ts.grok.org.uk
Subject: FLEA-2007-0061-1 sun-jre sun-jdk

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Foresight Linux Essential Advisory: 2007-0061-1
Published: 2007-10-26

Rating: Moderate

Updated Versions:
    sun-jre=/conary.rpath.com@rpl:devel//foresight.rpath.org@fl:1-devel//1/6u3-1.2-1
    sun-jdk=/conary.rpath.com@rpl:devel//foresight.rpath.org@fl:1-devel//1/6u3-1.2-1
    group-dist=/foresight.rpath.org@fl:1-devel//1/1.4.1-0.1-11

References:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5232
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5238
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5239
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5240
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5273
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5274

Description:
    Previous versions of Sun's Java implementation are vulnerable to multiple
    issues which allow attackers to break the security model of the Java
    Virtual Machine and run arbitrary code as the user running Java (most often
    a non-root user in a browser setting) via multiple vectors.

- ---

Copyright 2007 Foresight Linux Project
This file is distributed under the terms of the MIT License.
A copy is available at http://www.foresightlinux.org/permanent/mit-license.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.7 (GNU/Linux)
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=PEfc
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ