Oval Definition:oval:com.redhat.rhsa:def:20110292
Revision Date:2011-02-22Version:602
Title:RHSA-2011:0292: java-1.4.2-ibm security update (Moderate)
Description:The IBM 1.4.2 SR13-FP8 Java release includes the IBM Java 2 Runtime Environment and the IBM Java 2 Software Development Kit.

  • A denial of service flaw was found in the way certain strings were converted to Double objects. A remote attacker could use this flaw to cause Java based applications to hang, for example, if they parsed Double values in a specially-crafted HTTP request. (CVE-2010-4476)

    All users of java-1.4.2-ibm are advised to upgrade to these updated packages, which contain the IBM 1.4.2 SR13-FP8 Java release. All running instances of IBM Java must be restarted for this update to take effect.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2010-4476
    RHSA-2011:0292-01
    Platform(s):Supplementary for Red Hat Enterprise Linux 5
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux 5 is installed
  • AND Package Information
  • java-1.4.2-ibm is earlier than 0:1.4.2.13.8-1jpp.3.el5
  • AND java-1.4.2-ibm is signed with Red Hat redhatrelease key
  • OR
  • java-1.4.2-ibm-demo is earlier than 0:1.4.2.13.8-1jpp.3.el5
  • AND java-1.4.2-ibm-demo is signed with Red Hat redhatrelease key
  • OR
  • java-1.4.2-ibm-devel is earlier than 0:1.4.2.13.8-1jpp.3.el5
  • AND java-1.4.2-ibm-devel is signed with Red Hat redhatrelease key
  • OR
  • java-1.4.2-ibm-javacomm is earlier than 0:1.4.2.13.8-1jpp.3.el5
  • AND java-1.4.2-ibm-javacomm is signed with Red Hat redhatrelease key
  • OR
  • java-1.4.2-ibm-jdbc is earlier than 0:1.4.2.13.8-1jpp.3.el5
  • AND java-1.4.2-ibm-jdbc is signed with Red Hat redhatrelease key
  • OR
  • java-1.4.2-ibm-plugin is earlier than 0:1.4.2.13.8-1jpp.3.el5
  • AND java-1.4.2-ibm-plugin is signed with Red Hat redhatrelease key
  • OR
  • java-1.4.2-ibm-src is earlier than 0:1.4.2.13.8-1jpp.3.el5
  • AND java-1.4.2-ibm-src is signed with Red Hat redhatrelease key
    • BACK