sdkp2-java-1_4_2-ibmSecurity update for IBM Java 1.4.2Security update for IBM Java 1.4.2This update of IBM Java to 1.4.2 SR11 fixes various
security problems:
* CVE-2008-1196: Stack-based buffer overflow in Java Web
Start (javaws.exe) allows remote attackers to execute
arbitrary code via a crafted JNLP file.
* CVE-2008-1187: Unspecified vulnerability in the Java
Runtime Environment (JRE) allows remote attackers to
cause a denial of service (JRE crash) and possibly
execute arbitrary code via unknown vectors related to
XSLT transforms.
* CVE-2007-5240: Visual truncation vulnerability in the
Java Runtime Environment allows remote attackers to
circumvent display of the untrusted-code warning banner
by creating a window larger than the workstation screen.
This update of IBM Java to 1.4.2 SR11 fixes various
security problems:
* CVE-2008-1196: Stack-based buffer overflow in Java Web
Start (javaws.exe) allows remote attackers to execute
arbitrary code via a crafted JNLP file.
* CVE-2008-1187: Unspecified vulnerability in the Java
Runtime Environment (JRE) allows remote attackers to
cause a denial of service (JRE crash) and possibly
execute arbitrary code via unknown vectors related to
XSLT transforms.
* CVE-2007-5240: Visual truncation vulnerability in the
Java Runtime Environment allows remote attackers to
circumvent display of the untrusted-code warning banner
by creating a window larger than the workstation screen.
securityjava-1_4_2-ibmi5869a7cb9d650f23039780296f7648dc99ee3ec2db8java-1_4_2-ibm-develi586366c260495c9c8904be8b938bb061c1d5f713590java-1_4_2-ibm-jdbci5869ecd73bf916816b60d8f4730845a2610edf27579java-1_4_2-ibm-plugini586ee5407716a532f66ecd89c67166059277a45591a