Oval Definition:oval:com.redhat.rhsa:def:20110214
Revision Date:2011-02-11Version:638
Title:RHSA-2011:0214: java-1.6.0-openjdk security update (Moderate)
Description:These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit.

  • A denial of service flaw was found in the way certain strings were converted to Double objects. A remote attacker could use this flaw to cause Java-based applications to hang, for instance if they parse Double values in a specially-crafted HTTP request. (CVE-2010-4476)

    All users of java-1.6.0-openjdk are advised to upgrade to these updated packages, which resolve this issue. All running instances of OpenJDK Java must be restarted for the update to take effect.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2010-4476
    CVE-2010-4476
    RHSA-2011:0214
    RHSA-2011:0214-01
    RHSA-2011:0214-01
    Platform(s):Red Hat Enterprise Linux 5
    Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.36.b17.el6_0
  • AND java-1.6.0-openjdk is signed with Red Hat redhatrelease2 key
  • java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.36.b17.el6_0
  • AND java-1.6.0-openjdk-demo is signed with Red Hat redhatrelease2 key
  • java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.36.b17.el6_0
  • AND java-1.6.0-openjdk-devel is signed with Red Hat redhatrelease2 key
  • java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.36.b17.el6_0
  • AND java-1.6.0-openjdk-javadoc is signed with Red Hat redhatrelease2 key
  • java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.36.b17.el6_0
  • AND java-1.6.0-openjdk-src is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.18.b17.el5
  • AND java-1.6.0-openjdk is signed with Red Hat redhatrelease2 key
  • java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.18.b17.el5
  • AND java-1.6.0-openjdk-demo is signed with Red Hat redhatrelease2 key
  • java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.18.b17.el5
  • AND java-1.6.0-openjdk-devel is signed with Red Hat redhatrelease2 key
  • java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.18.b17.el5
  • AND java-1.6.0-openjdk-javadoc is signed with Red Hat redhatrelease2 key
  • java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.18.b17.el5
  • AND java-1.6.0-openjdk-src is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • AND Package Information
  • java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.36.b17.el6_0
  • AND java-1.6.0-openjdk is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.36.b17.el6_0
  • AND java-1.6.0-openjdk-demo is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.36.b17.el6_0
  • AND java-1.6.0-openjdk-javadoc is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.36.b17.el6_0
  • AND java-1.6.0-openjdk-src is signed with Red Hat redhatrelease2 key
  • OR
  • java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.36.b17.el6_0
  • AND java-1.6.0-openjdk-devel is signed with Red Hat redhatrelease2 key
    • BACK