Oval Definition:oval:org.mitre.oval:def:22921
Revision Date:2014-05-26Version:20
Title:ELSA-2009:1505: java-1.4.2-ibm security update (Moderate)
Description:XMLScanner.java in Apache Xerces2 Java, as used in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 and JDK and JRE 5.0 before Update 20, and in other products, allows remote attackers to cause a denial of service (infinite loop and application hang) via malformed XML input, as demonstrated by the Codenomicon XML fuzzing framework.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2008-5349
CVE-2009-2625
ELSA-2009:1505-01
Platform(s):Oracle Linux 5
Product(s):java-1.4.2-ibm
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • java-1.4.2-ibm is earlier than 0:1.4.2.13.1-1jpp.1.el5
  • OR java-1.4.2-ibm-devel is earlier than 0:1.4.2.13.1-1jpp.1.el5
  • OR java-1.4.2-ibm-src is earlier than 0:1.4.2.13.1-1jpp.1.el5
  • OR java-1.4.2-ibm-demo is earlier than 0:1.4.2.13.1-1jpp.1.el5
  • OR java-1.4.2-ibm-javacomm is earlier than 0:1.4.2.13.1-1jpp.1.el5
  • OR java-1.4.2-ibm-plugin is earlier than 0:1.4.2.13.1-1jpp.1.el5
  • OR java-1.4.2-ibm-jdbc is earlier than 0:1.4.2.13.1-1jpp.1.el5
    • BACK