| Revision Date: | 2014-03-04 | Version: | 1 |
| Title: | Security update for icedtea-web |
| Description: |
The OpenJDK Java Plugin IcedTea Web was released to fix a temporary file access problem.
Changes:
* Dialogs center on screen before becoming visible. * Support for u45 new manifest attributes (Application-Name). * Custom applet permission policies panel in itweb-settings control panel. * Plugin fixes: o PR1271: icedtea-web does not handle 'javascript:'-protocol URLs o RH976833: Multiple applets on one page cause deadlock o Enabled javaconsole. * Security fixes: o CVE-2013-6493/RH1010958: Insecure temporary file use flaw in LiveConnect implementation. * Additional fixes and changes: o Christmas splashscreen extension o Fixed classloading deadlocks o Cleaned code from warnings o Pipes moved to XDG runtime dir.
Security Issue references:
* CVE-2013-6493
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 864364
CVE-2013-6493
|
| Platform(s): | SUSE Linux Enterprise Desktop 11 SP3
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP3 is installed AND icedtea-web-1.4.2-0.7.1 is installed
|