Oval Definition:oval:org.mitre.oval:def:21749
Revision Date:2014-02-24Version:35
Title:RHSA-2011:0176: java-1.6.0-openjdk security update (Moderate)
Description:The JNLP SecurityManager in IcedTea (IcedTea.so) 1.7 before 1.7.7, 1.8 before 1.8.4, and 1.9 before 1.9.4 for Java OpenJDK returns from the checkPermission method instead of throwing an exception in certain circumstances, which might allow context-dependent attackers to bypass the intended security policy by creating instances of ClassLoader.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2011:0176
CVE-2010-3860
CVE-2010-4351
RHSA-2011:0176-01
Platform(s):CentOS Linux 5
Red Hat Enterprise Linux 5
Product(s):java-1.6.0-openjdk
Definition Synopsis
  • Redhat 5 or Centos 5 release
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND Packages section
  • java-1.6.0-openjdk is earlier than 1:1.6.0.0-1.17.b17.el5
  • OR java-1.6.0-openjdk-src is earlier than 1:1.6.0.0-1.17.b17.el5
  • OR java-1.6.0-openjdk-demo is earlier than 1:1.6.0.0-1.17.b17.el5
  • OR java-1.6.0-openjdk-devel is earlier than 1:1.6.0.0-1.17.b17.el5
  • OR java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.0-1.17.b17.el5
    • BACK