RHSA-2011:0214-01 -- Redhat java-1.6.0-openjdkID: oval:org.secpod.oval:def:500100 | Date: (C)2012-01-31 (M)2023-11-09 |
Class: PATCH | Family: unix |
These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. A denial of service flaw was found in the way certain strings were converted to Double objects. A remote attacker could use this flaw to cause Java-based applications to hang, for instance if they parse Double values in a specially-crafted HTTP request. All users of java-1.6.0-openjdk are advised to upgrade to these updated packages, which resolve this issue. All running instances of OpenJDK Java must be restarted for the update to take effect.
Platform: |
Red Hat Enterprise Linux 6 |
Red Hat Enterprise Linux 5 |
Product: |
java-1.6.0-openjdk |