OVAL Reference oval:org.opensuse.security:def:20092675

Oval Definition:

oval:org.opensuse.security:def:20092675

Revision Date:	2022-05-20	Version:	1
Title:	CVE-2009-2675
Description:	Integer overflow in the unpack200 utility in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows context-dependent attackers to gain privileges via unspecified length fields in the header of a Pack200-compressed JAR file, which leads to a heap-based buffer overflow during decompression.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2009-2675 Mitre CVE-2009-2675 SUSE CVE-2009-2675 SUSE-SA:2009:043 SUSE-SA:2009:043 SUSE-SA:2009:053 SUSE-SA:2009:053 SUSE-SR:2009:016 SUSE-SR:2009:016
Platform(s):	Open Enterprise Server openSUSE 10.3 openSUSE 11.0 openSUSE 11.1 SUSE Linux Enterprise Desktop 11 GA SUSE Linux Enterprise SDK 11 GA SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 GA SUSE Linux Enterprise Server for SAP Applications 11	Product(s):
Definition Synopsis
Release Information suse110 is installed java-1_6_0-openjdk-demo less than 1.6_b16-0.1 OR java-1_6_0-openjdk-devel less than 1.6_b16-0.1 OR java-1_6_0-openjdk-javadoc less than 1.6_b16-0.1 OR java-1_6_0-openjdk-plugin less than 1.6_b16-0.1 OR java-1_6_0-openjdk-src less than 1.6_b16-0.1 OR java-1_6_0-openjdk less than 1.6_b16-0.1 OR suse111 is installed java-1_6_0-openjdk-demo less than 1.6_b16-0.1.3 OR java-1_6_0-openjdk-devel less than 1.6_b16-0.1.3 OR java-1_6_0-openjdk-javadoc less than 1.6_b16-0.1.3 OR java-1_6_0-openjdk-plugin less than 1.6_b16-0.1.3 OR java-1_6_0-openjdk-src less than 1.6_b16-0.1.3 OR java-1_6_0-openjdk less than 1.6_b16-0.1.3 OR Package Information sle11-sdk is installed java-1_6_0-ibm-devel less than 1.6.0_sr6-1.1.1 OR java-1_6_0-ibm-fonts less than 1.6.0_sr6-1.1.1 OR java-1_6_0-ibm less than 1.6.0_sr6-1.1.1 OR sles11 is installed java-1_6_0-ibm-alsa less than 1.6.0_sr6-1.1.1 OR java-1_6_0-ibm-fonts less than 1.6.0_sr6-1.1.1 OR java-1_6_0-ibm-jdbc less than 1.6.0_sr6-1.1.1 OR java-1_6_0-ibm-plugin less than 1.6.0_sr6-1.1.1 OR java-1_6_0-ibm less than 1.6.0_sr6-1.1.1 OR Package Information sles9-oes is installed AND IBMJava5-JRE less than 1.5.0-0.70 OR IBMJava5-SDK less than 1.5.0-0.70 OR Package Information suse110 is installed java-1_6_0-sun-alsa less than 1.6.0.u15-0.1 OR java-1_6_0-sun-demo less than 1.6.0.u15-0.1 OR java-1_6_0-sun-devel less than 1.6.0.u15-0.1 OR java-1_6_0-sun-jdbc less than 1.6.0.u15-0.1 OR java-1_6_0-sun-plugin less than 1.6.0.u15-0.1 OR java-1_6_0-sun-src less than 1.6.0.u15-0.1 OR java-1_6_0-sun less than 1.6.0.u15-0.1 OR suse111 is installed java-1_6_0-sun-alsa less than 1.6.0.u15-0.1.1 OR java-1_6_0-sun-devel less than 1.6.0.u15-0.1.1 OR java-1_6_0-sun-jdbc less than 1.6.0.u15-0.1.1 OR java-1_6_0-sun-plugin less than 1.6.0.u15-0.1.1 OR java-1_6_0-sun-src less than 1.6.0.u15-0.1.1 OR java-1_6_0-sun less than 1.6.0.u15-0.1.1 OR Package Information sled11 is installed AND java-1_6_0-sun-alsa less than 1.6.0.u15-0.1.1 OR java-1_6_0-sun-demo less than 1.6.0.u15-0.1.1 OR java-1_6_0-sun-jdbc less than 1.6.0.u15-0.1.1 OR java-1_6_0-sun-plugin less than 1.6.0.u15-0.1.1 OR java-1_6_0-sun-src less than 1.6.0.u15-0.1.1 OR java-1_6_0-sun less than 1.6.0.u15-0.1.1 OR Package Information suse110 is installed java-1_5_0-sun-alsa less than 1.5.0_update20-0.1 OR java-1_5_0-sun-demo less than 1.5.0_update20-0.1 OR java-1_5_0-sun-devel less than 1.5.0_update20-0.1 OR java-1_5_0-sun-jdbc less than 1.5.0_update20-0.1 OR java-1_5_0-sun-plugin less than 1.5.0_update20-0.1 OR java-1_5_0-sun-src less than 1.5.0_update20-0.1 OR java-1_5_0-sun less than 1.5.0_update20-0.1 OR suse111 is installed java-1_5_0-sun-alsa less than 1.5.0_update20-0.1.1 OR java-1_5_0-sun-devel less than 1.5.0_update20-0.1.1 OR java-1_5_0-sun-jdbc less than 1.5.0_update20-0.1.1 OR java-1_5_0-sun-plugin less than 1.5.0_update20-0.1.1 OR java-1_5_0-sun-src less than 1.5.0_update20-0.1.1 OR java-1_5_0-sun less than 1.5.0_update20-0.1.1
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr6-1.1 is installed OR java-1_6_0-ibm-alsa-1.6.0-124.6 is installed OR java-1_6_0-ibm-alsa-x86-1.6.0-124.7 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr6-1.1 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr6-1.1 is installed OR java-1_6_0-ibm-plugin-1.6.0-124.6 is installed OR java-1_6_0-ibm-x86-1.6.0-124.7 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr6-1.1.1 is installed OR java-1_6_0-ibm-alsa-1.6.0_sr6-1.1.1 is installed OR java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr6-1.1.1 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr6-1.1.1 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr6-1.1.1 is installed OR java-1_6_0-ibm-x86-1.6.0-124.7.1 is installed

BACK