MDVSA-2010:084 -- Mandriva java-1.6.0-openjdkID: oval:org.secpod.oval:def:301167 | Date: (C)2012-01-07 (M)2024-02-19 |
Class: PATCH | Family: unix |
Multiple Java OpenJDK security vulnerabilities has been identified and fixed: - TLS: MITM attacks via session renegotiation . - Loader-constraint table allows arrays instead of only the b ase-classes . - Policy/PolicyFile leak dynamic ProtectionDomains. - File TOCTOU deserialization vulnerability . - Inflater/Deflater clone issues . - Unsigned applet can retrieve the dragged information before drop action occurs . - AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error . - System.arraycopy unable to reference elements beyond Integer.MAX_VALUE bytes . - Deserialization of RMIConnectionImpl objects should enforce stricter checks . - Subclasses of InetAddress may incorrectly interpret network addresses . - JAR unpack200 must verify input parameters . - CMM readMabCurveData Buffer Overflow Vulnerability . - Applet Trusted Methods Chaining Privilege Escalation Vulner ability . - No ClassCastException for HashAttributeSet constructors if run with -Xcomp - ImagingLib arbitrary code execution vulnerability . - AWT Library Invalid Index Vulnerability . Additional security issues that was fixed with IcedTea6 1.6.2: - deprecate MD2 in SSL cert validation . - ICC_Profile file existence detection information leak . - JRE AWT setDifflCM stack overflow . - JRE AWT setBytePixels heap overflow . - JPEG Image Writer quantization problem . - ImageI/O JPEG heap overflow . - MessageDigest.isEqual introduces timing attack vulnerabilities . - OpenJDK ASN.1/DER input stream parser denial of service - GraphicsConfiguration information leak . - UI logging information leakage . - resurrected classloaders can still have children . - Numerous static security flaws in Swing . - Mutable statics in Windows PL&F . - zoneinfo file existence information leak . - BMP parsing DoS with UNC ICC links . Additionally Paulo Cesar Pereira de Andrade at Mandriva found and fixed a bug in IcedTea6 1.8 that is also applied to the provided packages: * plugin/icedteanp/IcedTeaNPPlugin.cc : Increment malloc size by one to account for NULL terminator. Bug# 474. Packages for 2009.0 are provided due to the Extended Maintenance Program.
Platform: |
Mandriva Linux 2010.0 |
Mandriva Linux 2009.0 |
Mandriva Linux 2009.1 |
Product: |
java-1.6.0-openjdk |