Oval Definition:oval:org.opensuse.security:def:20124540
Revision Date:2022-09-02Version:1
Title:CVE-2012-4540
Description:

Off-by-one error in the invoke function in IcedTeaScriptablePluginObject.cc in IcedTea-Web 1.1.x before 1.1.7, 1.2.x before 1.2.2, 1.3.x before 1.3.1, and 1.4.x before 1.4.1 allows remote attackers to obtain sensitive information, cause a denial of service (crash), or possibly execute arbitrary code via a crafted webpage that triggers a heap-based buffer overflow, related to an error message and a "triggering event attached to applet." NOTE: the 1.4.x versions were originally associated with CVE-2013-4349, but that entry has been MERGED with this one.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2012-4540
Mitre CVE-2012-4540
SUSE CVE-2012-4540
openSUSE-SU-2012:1524-1
openSUSE-SU-2012:1524-1
openSUSE-SU-2013:0174-1
openSUSE-SU-2013:0174-1
openSUSE-SU-2013:1509-1
openSUSE-SU-2013:1509-1
openSUSE-SU-2013:1511-1
openSUSE-SU-2013:1511-1
openSUSE-SU-2015:1595-1
openSUSE-SU-2015:1595-1
SUSE-SU-2012:1511-1
SUSE-SU-2012:1511-1
SUSE-SU-2013:1520-1
SUSE-SU-2013:1520-1
Platform(s):openSUSE 12.1
openSUSE 12.1 Update
openSUSE 12.2 Update
openSUSE 12.3 Update
openSUSE 13.1
openSUSE 13.2
openSUSE Leap 15.0
openSUSE Leap 42.1
openSUSE Leap 42.2
openSUSE Leap 42.3
openSUSE Tumbleweed
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Desktop 12 SP5
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP4
SUSE Linux Enterprise Workstation Extension 12 SP5
SUSE Linux Enterprise Workstation Extension 15
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND Package Information
  • icedtea-web-1.5.3-0.7.1 is installed
  • OR icedtea-web-javadoc-1.5.3-0.7.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND icedtea-web-1.4.1-0.8 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND icedtea-web-1.4.1-0.11 is installed
    • Definition Synopsis
  • openSUSE Leap 42.1 is installed
  • AND Package Information
  • icedtea-web-javadoc-1.6.1-1.2 is installed
  • AND icedtea-web-javadoc is signed with openSUSE key
  • OR
  • java-1_8_0-openjdk-plugin-1.6.1-1.2 is installed
  • AND java-1_8_0-openjdk-plugin is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • icedtea-web-javadoc-1.6.1-2.37 is installed
  • AND icedtea-web-javadoc is signed with openSUSE key
  • OR
  • java-1_8_0-openjdk-plugin-1.6.1-2.35 is installed
  • AND java-1_8_0-openjdk-plugin is signed with openSUSE key
    • Definition Synopsis
  • openSUSE 13.2 is installed
  • AND Package Information
  • icedtea-web-1.6.1-6.1 is installed
  • OR icedtea-web-javadoc-1.5.1-4.1 is installed
  • OR java-1_7_0-openjdk-plugin-1.5.1-4.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.5.1-4.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1.13 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1.13 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1.13 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1.13 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • icedtea-web-javadoc-1.6.2-4 is installed
  • AND icedtea-web-javadoc is signed with openSUSE key
  • OR
  • java-1_8_0-openjdk-plugin-1.6.2-4 is installed
  • AND java-1_8_0-openjdk-plugin is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • icedtea-web-1.7.1-lp150.1 is installed
  • AND icedtea-web is signed with openSUSE key
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND icedtea-web-1.7.1-1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP4 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1.13 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.2-2.8.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • icedtea-web-javadoc-1.6.2-3.3 is installed
  • OR java-1_7_0-openjdk-plugin-1.6.2-3.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-3.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 is installed
  • OR SUSE Linux Enterprise Server 12 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND java-1_7_0-openjdk-plugin-1.5.1-1.13 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Server 12 SP1 is installed
  • OR SUSE Linux Enterprise Server 12 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.1-2.3.1 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.1-2.4.21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP4 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP5 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • OR SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed
  • AND
  • java-1_7_0-openjdk-plugin-1.6.2-2.8.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP5 is installed
  • OR SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed
  • AND Package Information
  • java-1_7_0-openjdk-plugin-1.6.2-2.8.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • OR SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND Package Information
  • java-1_7_0-openjdk-plugin-1.6.2-2.8.3 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10.3 is installed
    • BACK