slesp3-java-1_4_2-ibmSecurity update for IBM Java 1.4.2Security update for IBM Java 1.4.2IBM Java 1.4.2 was updated to SR13 FP1.
It fixes following two security issues: CVE-2009-2625: A
vulnerability in the Java Runtime Environment (JRE) with
parsing XML data might allow a remote client to create a
denial-of-service condition on the system that the JRE runs
on.
CVE-2008-5349: A vulnerability in how the Java Runtime
Environment (JRE) handles certain RSA public keys might
cause the JRE to consume an excessive amount of CPU
resources. This might lead to a Denial of Service (DoS)
condition on affected systems. Such keys could be provided
by a remote client of an application.
This issue affects the following security providers:
IBMJCE, IBMPKCS11Impl and IBMJCEFIPS.
IBM Java 1.4.2 was updated to SR13 FP1.
It fixes following two security issues: CVE-2009-2625: A
vulnerability in the Java Runtime Environment (JRE) with
parsing XML data might allow a remote client to create a
denial-of-service condition on the system that the JRE runs
on.
CVE-2008-5349: A vulnerability in how the Java Runtime
Environment (JRE) handles certain RSA public keys might
cause the JRE to consume an excessive amount of CPU
resources. This might lead to a Denial of Service (DoS)
condition on affected systems. Such keys could be provided
by a remote client of an application.
This issue affects the following security providers:
IBMJCE, IBMPKCS11Impl and IBMJCEFIPS.
securityjava-1_4_2-ibmi5865677ef6186c3adda522b3a57c41a109c4a18fc39java-1_4_2-ibm-develi5862d4c9a0c80875e59b25c7705a76b3c43ad1e752djava-1_4_2-ibm-jdbci5864db28c66233e7083d33b93599f340cb19a2a1acc