Download
| Alert*
|
oval:org.secpod.oval:def:400074
The Sun Java JRE /JDK 5 was updated to Update 20 fixing various security issues. CVE-2009-2670: The audio system in Sun Java Runtime Environment in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by untrusted applets and ... oval:org.secpod.oval:def:19704 The host is installed with Oracle Java SE 6 before Update 15 or 5 before Update 20 and is prone to integer overflow vulnerability. A flaw is present in the applications, which fails to properly handle a crafted JPEG image. Successful exploitation allows context-dependent attackers to execute arbitra ... oval:org.secpod.oval:def:300474 Multiple Java OpenJDK security vulnerabilities has been identified and fixed: The design of the W3C XML Signature Syntax and Processing recommendation specifies an HMAC truncation length but does not require a minimum for its length, which allows attackers to spoof HMAC-based signatures and bypass ... oval:org.secpod.oval:def:202770 These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. The Java Runtime Environment contains the software and tools that users need to run applications written using the Java programming language. A flaw was found in the way the XML Digital Signatu ... oval:org.secpod.oval:def:101435 The OpenJDK runtime environment. oval:org.secpod.oval:def:500534 These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. The Java Runtime Environment contains the software and tools that users need to run applications written using the Java programming language. A flaw was found in the way the XML Digital Signatu ... oval:org.secpod.oval:def:101499 The OpenJDK runtime environment. oval:org.secpod.oval:def:202777 These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. The Java Runtime Environment contains the software and tools that users need to run applications written using the Java programming language. A flaw was found in the way the XML Digital Signatu ... oval:org.secpod.oval:def:700354 It was discovered that the XML HMAC signature system did not correctly check certain lengths. If an attacker sent a truncated HMAC, it could bypass authentication, leading to potential privilege escalation. It was discovered that certain variables could leak information. If a user were tricked into ... |
