sledp1-java-1_5_0-ibmSecurity update for java-1_5_0-ibmSecurity update for java-1_5_0-ibmThe IBM Java JRE/SDK has been brought to release 1.5.0 SR6,
containing several bugfixes, including the following
security fixes:
CVE-2007-5232: A vulnerability in the Java Runtime
Environment (JRE) with applet caching may allow an
untrusted applet that is downloaded from a malicious
website to make network connections to network services on
machines other than the one that the applet was downloaded
from. This may allow network resources (such as web pages)
and vulnerabilities (that exist on these network services)
which are not otherwise normally accessible to be accessed
or exploited.
CVE-2007-5274: A vulnerability in the Java Runtime
Environment (JRE) may allow malicious Javascript code that
is downloaded by a browser from a malicious website to make
network connections, through Java APIs, to network services
on machines other than the one that the Javascript code was
downloaded from. This may allow network resources (such as
web pages) and vulnerabilities (that exist on these network
services) which are not otherwise normally accessible to be
accessed or exploited.
CVE-2007-5273: A second vulnerability in the JRE may allow
an untrusted applet that is downloaded from a malicious
website through a web proxy to make network connections to
network services on machines other than the one that the
applet was downloaded from. This may allow network
resources (such as web pages) and vulnerabilities (that
exist on these network services) which are not otherwise
normally accessible to be accessed or exploited.
CVE-2007-5236: An untrusted Java Web Start application may
write arbitrary files with the privileges of the user
running the application.
CVE-2007-5238: Three separate vulnerabilities may allow an
untrusted Java Web Start application to determine the
location of the Java Web Start cache.
CVE-2007-5239: An untrusted Java Web Start application or
Java applet may move or copy arbitrary files by requesting
the user of the application or applet to drag and drop a
file from the Java Web Start application or Java applet
window.
CVE-2007-5240: An untrusted applet may display an
over-sized window so that the applet warning banner is not
visible to the user running the untrusted applet.
CVE-2007-4381: A vulnerability in the font parsing code in
the Java Runtime Environment may allow an untrusted applet
to elevate its privileges. For example, an applet may grant
itself permissions to read and write local files or execute
local applications that are accessible to the user running
the untrusted applet.
CVE-2007-3698: The Java Secure Socket Extension (JSSE) that
is included in various releases of the Java Runtime
Environment does not correctly process SSL/TLS handshake
requests. This vulnerability may be exploited to create a
Denial of Service (DoS) condition to the system as a whole
on a server that listens for SSL/TLS connections using JSSE
for SSL/TLS support.
For more information see:
http://www-128.ibm.com/developerworks/java/jdk/alerts/
Additionally a concurrency bug has been fixed (Novell Bug
330713).
The IBM Java JRE/SDK has been brought to release 1.5.0 SR6,
containing several bugfixes, including the following
security fixes:
CVE-2007-5232: A vulnerability in the Java Runtime
Environment (JRE) with applet caching may allow an
untrusted applet that is downloaded from a malicious
website to make network connections to network services on
machines other than the one that the applet was downloaded
from. This may allow network resources (such as web pages)
and vulnerabilities (that exist on these network services)
which are not otherwise normally accessible to be accessed
or exploited.
CVE-2007-5274: A vulnerability in the Java Runtime
Environment (JRE) may allow malicious Javascript code that
is downloaded by a browser from a malicious website to make
network connections, through Java APIs, to network services
on machines other than the one that the Javascript code was
downloaded from. This may allow network resources (such as
web pages) and vulnerabilities (that exist on these network
services) which are not otherwise normally accessible to be
accessed or exploited.
CVE-2007-5273: A second vulnerability in the JRE may allow
an untrusted applet that is downloaded from a malicious
website through a web proxy to make network connections to
network services on machines other than the one that the
applet was downloaded from. This may allow network
resources (such as web pages) and vulnerabilities (that
exist on these network services) which are not otherwise
normally accessible to be accessed or exploited.
CVE-2007-5236: An untrusted Java Web Start application may
write arbitrary files with the privileges of the user
running the application.
CVE-2007-5238: Three separate vulnerabilities may allow an
untrusted Java Web Start application to determine the
location of the Java Web Start cache.
CVE-2007-5239: An untrusted Java Web Start application or
Java applet may move or copy arbitrary files by requesting
the user of the application or applet to drag and drop a
file from the Java Web Start application or Java applet
window.
CVE-2007-5240: An untrusted applet may display an
over-sized window so that the applet warning banner is not
visible to the user running the untrusted applet.
CVE-2007-4381: A vulnerability in the font parsing code in
the Java Runtime Environment may allow an untrusted applet
to elevate its privileges. For example, an applet may grant
itself permissions to read and write local files or execute
local applications that are accessible to the user running
the untrusted applet.
CVE-2007-3698: The Java Secure Socket Extension (JSSE) that
is included in various releases of the Java Runtime
Environment does not correctly process SSL/TLS handshake
requests. This vulnerability may be exploited to create a
Denial of Service (DoS) condition to the system as a whole
on a server that listens for SSL/TLS connections using JSSE
for SSL/TLS support.
For more information see:
http://www-128.ibm.com/developerworks/java/jdk/alerts/
Additionally a concurrency bug has been fixed (Novell Bug
330713).
securityjava-1_5_0-ibmi586ba78599fad61af319dd241d22ebe894fb1b2d3c6java-1_5_0-ibm-alsai586eb0cce425e531933e8c837cc0d29554845e89e79java-1_5_0-ibm-demoi58624b8ec86d6b79d0d90141cb9bf722cda889865fcjava-1_5_0-ibm-develi586d2796f86397d9c3d89e50668905b2568c6ad5e86java-1_5_0-ibm-jdbci586c067cee1ac5c29918bb2291442ee00056879e9d8java-1_5_0-ibm-plugini5867cb0e12ede569d1dc76efb3b0630e4971dbe4691java-1_5_0-ibm-srci5862187497a29b4e79c0cab89e53555de8a741e69f0