slesp2-java-1_4_2-ibmSecurity update for IBM Java 1.4.2Security update for IBM Java 1.4.2This update of IBM Java to 1.4.2 SR11 fixes various
security problems:
* CVE-2008-1196: Stack-based buffer overflow in Java Web
Start (javaws.exe) allows remote attackers to execute
arbitrary code via a crafted JNLP file.
* CVE-2008-1187: Unspecified vulnerability in the Java
Runtime Environment (JRE) allows remote attackers to
cause a denial of service (JRE crash) and possibly
execute arbitrary code via unknown vectors related to
XSLT transforms.
* CVE-2007-5240: Visual truncation vulnerability in the
Java Runtime Environment allows remote attackers to
circumvent display of the untrusted-code warning banner
by creating a window larger than the workstation screen.
This update of IBM Java to 1.4.2 SR11 fixes various
security problems:
* CVE-2008-1196: Stack-based buffer overflow in Java Web
Start (javaws.exe) allows remote attackers to execute
arbitrary code via a crafted JNLP file.
* CVE-2008-1187: Unspecified vulnerability in the Java
Runtime Environment (JRE) allows remote attackers to
cause a denial of service (JRE crash) and possibly
execute arbitrary code via unknown vectors related to
XSLT transforms.
* CVE-2007-5240: Visual truncation vulnerability in the
Java Runtime Environment allows remote attackers to
circumvent display of the untrusted-code warning banner
by creating a window larger than the workstation screen.
securityjava-1_4_2-ibmx86_6475849cd416b36a5d046ac5631765c15f2a3e3dd5java-1_4_2-ibm-develx86_64a3024113821f32434914acab55887e20222b46ec