sledp3-java-1_5_0-ibmSecurity update for IBM Java 1.5.0
This update of IBM Java 1.5.0 to SR11 FP2 to fixes the following security
issues:
*
Various unspecified and undocumented vulnerabilities that allows
remote attackers to affect confidentiality, integrity and
availability via various unknown vectors. (CVE-2010-0084
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0084> ,
CVE-2010-0085
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0085> ,
CVE-2010-0087
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0087> ,
CVE-2010-0088
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0088> ,
CVE-2010-0089
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0089> ,
CVE-2010-0091
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0091> ,
CVE-2010-0092
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0092> ,
CVE-2010-0095
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0095> ,
CVE-2010-0837
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0837> ,
CVE-2010-0839
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0839> )
*
Unspecified vulnerability in the Java Runtime Environment component
in Oracle Java SE and Java for Business 6 Update 18 and 5.0 Update 23
allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims
from a reliable researcher that this is due to missing privilege
checks during deserialization of RMIConnectionImpl objects, which
allows remote attackers to call system-level Java functions via the
class loader of a constructor that is being deserialized. (
CVE-2010-0094
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0094> )
*
Unspecified vulnerability in the Java 2D component in Oracle Java SE
and Java for Business 6 Update 18, 5.0, Update, and 23 allows remote
attackers to affect confidentiality, integrity, and availability via
unknown vectors. NOTE: the previous information was obtained from the
March 2010 CPU. Oracle has not commented on claims from a reliable
researcher that this is a stack-based buffer overflow using an
untrusted size value in the readMabCurveData function in the CMM
module of the JVM. (CVE-2010-0838
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0838> )
*
Unspecified vulnerability in the Java Runtime Environment component
in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23,
and 1.4.2_25 allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors. NOTE: the previous
information was obtained from the March 2010 CPU. Oracle has not
commented on claims from a reliable researcher that this is related
to improper checks when executing privileged methods in the Java
Runtime Environment (JRE), which allows attackers to execute
arbitrary code via (1) an untrusted object that extends the trusted
class but has not modified a certain method, or (2) "a similar trust
issue with interfaces," aka "Trusted Methods Chaining Remote Code
Execution Vulnerability." (CVE-2010-0840
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0840> )
*
Unspecified vulnerability in the ImageIO component in Oracle Java SE
and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25 allows
remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims
from a reliable researcher that this is an integer overflow in the
Java Runtime Environment that allows remote attackers to execute
arbitrary code via a JPEG image that contains subsample dimensions
with large values, related to JPEGImageReader and "stepX". (
CVE-2010-0841
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0841> )
*
Unspecified vulnerability in the Sound component in Oracle Java SE
and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and 1.3.1
27 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims
from a reliable researcher that this is an uncontrolled array index
that allows remote attackers to execute arbitrary code via a MIDI
file with a crafted MixerSequencer object, related to the GM_Song
structure. (CVE-2010-0842
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0842> )
*
Unspecified vulnerability in the Sound component in Oracle Java SE
and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and 1.3.1
27 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims
from a reliable researcher that this is related to XNewPtr and
improper handling of an integer parameter when allocating heap memory
in the com.sun.media.sound libraries, which allows remote attackers
to execute arbitrary code. (CVE-2010-0843
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0843> )
*
Unspecified vulnerability in the Sound component in Oracle Java SE
and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and 1.3.1
27 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims
from a reliable researcher that this is for improper parsing of a
crafted MIDI stream when creating a MixerSequencer object, which
causes a pointer to be corrupted and allows a NULL byte to be written
to arbitrary memory. (CVE-2010-0844
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0844> )
*
Unspecified vulnerability in the ImageIO component in Oracle Java SE
and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and
1.3.1_27 allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors. NOTE: the previous
information was obtained from the March 2010 CPU. Oracle has not
commented on claims from a reliable researcher that this is a
heap-based buffer overflow that allows remote attackers to execute
arbitrary code, related to an "invalid assignment" and inconsistent
length values in a JPEG image encoder (JPEGImageEncoderImpl). (
CVE-2010-0846
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0846> )
*
Unspecified vulnerability in the Java 2D component in Oracle Java SE
and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and
1.3.1_27 allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors. NOTE: the previous
information was obtained from the March 2010 CPU. Oracle has not
commented on claims from a reliable researcher that this is a
heap-based buffer overflow that allows arbitrary code execution via a
crafted image. (CVE-2010-0847
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0847> )
*
Unspecified vulnerability in the Java 2D component in Oracle Java SE
and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and
1.3.1_27 allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors. (CVE-2010-0848
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0848> )
*
Unspecified vulnerability in the Java 2D component in Oracle Java SE
and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and
1.3.1_27 allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors. NOTE: the previous
information was obtained from the March 2010 CPU. Oracle has not
commented on claims from a reliable researcher that this is a
heap-based buffer overflow in a decoding routine used by the
JPEGImageDecoderImpl interface, which allows code execution via a
crafted JPEG image. (CVE-2010-0849
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0849> )
*
CVE-2009-3555: The TLS protocol, and the SSL protocol 3.0 and
possibly earlier, as used in Microsoft Internet Information Services
(IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier,
OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network
Security Services (NSS) 3.12.4 and earlier, multiple Cisco products,
and other products, does not properly associate renegotiation
handshakes with an existing connection, which allows
man-in-the-middle attackers to insert data into HTTPS sessions, and
possibly other types of sessions protected by TLS or SSL, by sending
an unauthenticated request that is processed retroactively by a
server in a post-renegotiation context, related to a "plaintext
injection" attack, aka the "Project Mogul" issue. (CVE-2009-3555
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555> )
This update of IBM Java 1.5.0 to SR11 FP2 brings various bug and lots of
security fixes.
Following security issues were fixed: CVE-2010-0084: Unspecified
vulnerability in the Java Runtime Environment component in Oracle Java SE
and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25 allows
remote attackers to affect confidentiality via unknown vectors.
CVE-2010-0085: Unspecified vulnerability in the Java Runtime Environment
component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update
23, 1.4.225, and 1.3.127 allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors.
CVE-2010-0087: Unspecified vulnerability in the Java Web Start, Java
Plug-in component in Oracle Java SE and Java for Business 6 Update 18, 5.0
Update 23, 1.4.225, and 1.3.127 allows remote attackers to affect
confidentiality, integrity, and availability via unknown vectors.
CVE-2010-0088: Unspecified vulnerability in the Java Runtime Environment
component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update
23, 1.4.225, and 1.3.127 allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors.
CVE-2010-0089: Unspecified vulnerability in the Java Web Start, Java
Plug-in component in Oracle Java SE and Java for Business 6 Update 18, 5.0
Update 23, and 1.4.2_25 allows remote attackers to affect availability via
unknown vectors.
CVE-2010-0091: Unspecified vulnerability in the Java Runtime Environment
component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update
23, and 1.4.2_25 allows remote attackers to affect confidentiality via
unknown vectors.
CVE-2010-0092: Unspecified vulnerability in the Java Runtime Environment
component in Oracle Java SE and Java for Business 6 Update 18, and 5.0
Update 23 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors.
CVE-2009-3555: The TLS protocol, and the SSL protocol 3.0 and possibly
earlier, as used in Microsoft Internet Information Services (IIS) 7.0,
mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before
0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS)
3.12.4 and earlier, multiple Cisco products, and other products, does not
properly associate renegotiation handshakes with an existing connection,
which allows man-in-the-middle attackers to insert data into HTTPS
sessions, and possibly other types of sessions protected by TLS or SSL, by
sending an unauthenticated request that is processed retroactively by a
server in a post-renegotiation context, related to a "plaintext injection"
attack, aka the "Project Mogul" issue.
CVE-2010-0094: Unspecified vulnerability in the Java Runtime Environment
component in Oracle Java SE and Java for Business 6 Update 18 and 5.0
Update 23 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims from a
reliable researcher that this is due to missing privilege checks during
deserialization of RMIConnectionImpl objects, which allows remote attackers
to call system-level Java functions via the ClassLoader of a constructor
that is being deserialized.
CVE-2010-0095: Unspecified vulnerability in the Java Runtime Environment
component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update
23, and 1.4.2_25 allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors.
CVE-2010-0837: Unspecified vulnerability in the Pack200 component in Oracle
Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows
remote attackers to affect confidentiality, integrity, and availability via
unknown vectors.
CVE-2010-0838: Unspecified vulnerability in the Java 2D component in Oracle
Java SE and Java for Business 6 Update 18, 5.0, Update, and 23 allows
remote attackers to affect confidentiality, integrity, and availability via
unknown vectors. NOTE: the previous information was obtained from the March
2010 CPU. Oracle has not commented on claims from a reliable researcher
that this is a stack-based buffer overflow using an untrusted size value in
the readMabCurveData function in the CMM module in the JVM.
CVE-2010-0839: Unspecified vulnerability in the Sound component in Oracle
Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and
1.3.127 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors.
CVE-2010-0840: Unspecified vulnerability in the Java Runtime Environment
component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update
23, and 1.4.2_25 allows remote attackers to affect confidentiality,
integrity, and availability via unknown vectors. NOTE: the previous
information was obtained from the March 2010 CPU. Oracle has not commented
on claims from a reliable researcher that this is related to improper
checks when executing privileged methods in the Java Runtime Environment
(JRE), which allows attackers to execute arbitrary code via (1) an
untrusted object that extends the trusted class but has not modified a
certain method, or (2) "a similar trust issue with interfaces," aka
"Trusted Methods Chaining Remote Code Execution Vulnerability."
CVE-2010-0841: Unspecified vulnerability in the ImageIO component in Oracle
Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25
allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims from a
reliable researcher that this is an integer overflow in the Java Runtime
Environment that allows remote attackers to execute arbitrary code via a
JPEG image that contains subsample dimensions with large values, related to
JPEGImageReader and "stepX".
CVE-2010-0842: Unspecified vulnerability in the Sound component in Oracle
Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and
1.3.127 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims from a
reliable researcher that this is an uncontrolled array index that allows
remote attackers to execute arbitrary code via a MIDI file with a crafted
MixerSequencer object, related to the GM_Song structure.
CVE-2010-0843: Unspecified vulnerability in the Sound component in Oracle
Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and
1.3.127 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims from a
reliable researcher that this is related to XNewPtr and improper handling
of an integer parameter when allocating heap memory in the
com.sun.media.sound libraries, which allows remote attackers to execute
arbitrary code.
CVE-2010-0844: Unspecified vulnerability in the Sound component in Oracle
Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and
1.3.127 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims from a
reliable researcher that this is for improper parsing of a crafted MIDI
stream when creating a MixerSequencer object, which causes a pointer to be
corrupted and allows a NULL byte to be written to arbitrary memory.
CVE-2010-0846: Unspecified vulnerability in the ImageIO component in Oracle
Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and
1.3.1_27 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims from a
reliable researcher that this is a heap-based buffer overflow that allows
remote attackers to execute arbitrary code, related to an "invalid
assignment" and inconsistent length values in a JPEG image encoder
(JPEGImageEncoderImpl).
CVE-2010-0847: Unspecified vulnerability in the Java 2D component in Oracle
Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and
1.3.1_27 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims from a
reliable researcher that this is a heap-based buffer overflow that allows
arbitrary code execution via a crafted image.
CVE-2010-0848: Unspecified vulnerability in the Java 2D component in Oracle
Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and
1.3.1_27 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors.
CVE-2010-0849: Unspecified vulnerability in the Java 2D component in Oracle
Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.2_25, and
1.3.1_27 allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors. NOTE: the previous information was
obtained from the March 2010 CPU. Oracle has not commented on claims from a
reliable researcher that this is a heap-based buffer overflow in a decoding
routine used by the JPEGImageDecoderImpl interface, which allows code
execution via a crafted JPEG image.
Security Issues:
* CVE-2010-0084
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0084>
* CVE-2010-0085
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0085>
* CVE-2010-0087
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0087>
* CVE-2010-0088
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0088>
* CVE-2010-0089
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0089>
* CVE-2010-0091
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0091>
* CVE-2010-0092
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0092>
* CVE-2009-3555
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555>
* CVE-2010-0094
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0094>
* CVE-2010-0095
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0095>
* CVE-2010-0837
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0837>
* CVE-2010-0838
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0838>
* CVE-2010-0839
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0839>
* CVE-2010-0840
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0840>
* CVE-2010-0841
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0841>
* CVE-2010-0842
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0842>
* CVE-2010-0843
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0843>
* CVE-2010-0844
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0844>
* CVE-2010-0846
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0846>
* CVE-2010-0847
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0847>
* CVE-2010-0848
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0848>
* CVE-2010-0849
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0849>
securityjava-1_5_0-ibmx86_64092de5cdcbc70d3616c3a022b5d50fec6daf14f1java-1_5_0-ibm-32bitx86_64d9828524f8df85c841b061cee250aeba445fc109java-1_5_0-ibm-alsa-32bitx86_649181d3b2a1e7aad5e4349251a6f87fd9474dcb7ejava-1_5_0-ibm-demox86_640257ea7b53e9472b4b589a4f37888c39cb214812java-1_5_0-ibm-develx86_64377608cfbea30d35c8a66428da69fa75fe1342e7java-1_5_0-ibm-devel-32bitx86_64b9f417863a6cb57764a10dab49c882947c81c7ebjava-1_5_0-ibm-fontsx86_64923eed1d6cf83700c7ead16223c4baed7aa4b7ecjava-1_5_0-ibm-srcx86_6438775432cbd466d1a669f32ccb6db60aa90d059d