Oval Definition:	oval:org.mitre.oval:def:21045
Revision Date: 2014-02-24 Version: 35 Title: RHSA-2012:1132: icedtea-web security update (Important) Description: The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2012:1132 CVE-2012-3422 CVE-2012-3423 RHSA-2012:1132-01 Platform(s): CentOS Linux 6 Red Hat Enterprise Linux 6 Product(s): icedtea-web Definition Synopsis Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 OR The operating system installed on the system is CentOS Linux 6.x AND Packages section icedtea-web-javadoc is earlier than 0:1.2.1-1.el6_3 OR icedtea-web is earlier than 0:1.2.1-1.el6_3
BACK