Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.66299
Category:Gentoo Local Security Checks
Title:Gentoo Security Advisory GLSA 200911-02 (sun-jre-bin sun-jdk emul-linux-x86-java blackdown-jre blackdown-jdk)
Summary:NOSUMMARY
Description:Description:
The remote host is missing updates announced in
advisory GLSA 200911-02.

Multiple vulnerabilites in the Sun JDK and JRE allow for several attacks,
including the remote execution of arbitrary code.

Solution:
All Sun JRE 1.5.x users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-java/sun-jre-bin-1.5.0.22'

All Sun JRE 1.6.x users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-java/sun-jre-bin-1.6.0.17'

All Sun JDK 1.5.x users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-java/sun-jdk-1.5.0.22'

All Sun JDK 1.6.x users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-java/sun-jdk-1.6.0.17'

All users of the precompiled 32bit Sun JRE 1.5.x should upgrade to the
latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=app-emulation/emul-linux-x86-java-1.5.0.22'

All users of the precompiled 32bit Sun JRE 1.6.x should upgrade to the
latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=app-emulation/emul-linux-x86-java-1.6.0.17'

All Sun JRE 1.4.x, Sun JDK 1.4.x, Blackdown JRE, Blackdown JDK and
precompiled 32bit Sun JRE 1.4.x users are strongly advised to unmerge
Java 1.4:

# emerge --unmerge =app-emulation/emul-linux-x86-java-1.4*
# emerge --unmerge =dev-java/sun-jre-bin-1.4*
# emerge --unmerge =dev-java/sun-jdk-1.4*
# emerge --unmerge dev-java/blackdown-jdk
# emerge --unmerge dev-java/blackdown-jre

Gentoo is ceasing support for the 1.4 generation of the Sun Java
Platform in accordance with upstream. All 1.4 JRE and JDK versions are
masked and will be removed shortly.

http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200911-02
http://bugs.gentoo.org/show_bug.cgi?id=182824
http://bugs.gentoo.org/show_bug.cgi?id=231337
http://bugs.gentoo.org/show_bug.cgi?id=250012
http://bugs.gentoo.org/show_bug.cgi?id=263810
http://bugs.gentoo.org/show_bug.cgi?id=280409
http://bugs.gentoo.org/show_bug.cgi?id=291817

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2009-3879
http://security.gentoo.org/glsa/glsa-200911-02.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2010:084
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7545
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9568
http://secunia.com/advisories/37386
Common Vulnerability Exposure (CVE) ID: CVE-2009-3880
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10761
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7316
Common Vulnerability Exposure (CVE) ID: CVE-2009-3881
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11484
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6906
Common Vulnerability Exposure (CVE) ID: CVE-2009-3882
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7300
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8841
Common Vulnerability Exposure (CVE) ID: CVE-2009-3883
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10191
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6968
Common Vulnerability Exposure (CVE) ID: CVE-2009-3884
http://lists.apple.com/archives/security-announce/2009/Dec/msg00000.html
http://lists.apple.com/archives/security-announce/2009/Dec/msg00001.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11686
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6960
http://secunia.com/advisories/37581
Common Vulnerability Exposure (CVE) ID: CVE-2009-3886
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6794
CopyrightCopyright (c) 2009 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.