Oval Definition:	oval:org.mitre.oval:def:21713
Revision Date: 2015-03-09 Version: 12 Title: RHSA-2011:0214: java-1.6.0-openjdk security update (Moderate) Description: The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2011:0214-CentOS 5 CVE-2010-4476 RHSA-2011:0214-01 Platform(s): CentOS Linux 5 Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Product(s): java-1.6.0-openjdk Definition Synopsis Red Hat Enterprise Linux 5 and CentOS Linux 5 release section Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x AND Packages match section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.18.b17.el5 OR java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.18.b17.el5 OR java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.18.b17.el5 OR java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.18.b17.el5 OR java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.18.b17.el5 Red Hat Enterprise Linux 6 release section The operating system installed on the system is Red Hat Enterprise Linux 6 AND Packages match section java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.36.b17.el6_0 OR java-1.6.0-openjdk-debuginfo is earlier than 1:1.6.0.0-1.36.b17.el6_0 OR java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.36.b17.el6_0 OR java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.36.b17.el6_0 OR java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.36.b17.el6_0 OR java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.36.b17.el6_0
BACK