Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Fedora Local Security Checks
Title:Fedora Core 13 FEDORA-2011-8020 (java-1.6.0-openjdk)
The remote host is missing an update to java-1.6.0-openjdk
announced via advisory FEDORA-2011-8020.

The OpenJDK runtime environment.

Update Information:


[ 1 ] Bug #706139 - CVE-2011-0862 OpenJDK: integer overflows in JPEGImageReader and font SunLayoutEngine (2D, 7013519)
[ 2 ] Bug #706245 - CVE-2011-0864 OpenJDK: JVM memory corruption via certain bytecode (HotSpot, 7020373)
[ 3 ] Bug #706106 - CVE-2011-0865 OpenJDK: Deserialization allows creation of mutable SignedObject (Deserialization, 6618658)
[ 4 ] Bug #706153 - CVE-2011-0867 OpenJDK: NetworkInterface information leak (Networking, 7013969)
[ 5 ] Bug #706241 - CVE-2011-0868 OpenJDK: incorrect numeric type conversion in TransformHelper (2D, 7016495)
[ 6 ] Bug #706234 - CVE-2011-0869 OpenJDK: unprivileged proxy settings change via SOAPConnection (SAAJ, 7013971)
[ 7 ] Bug #706248 - CVE-2011-0871 OpenJDK: MediaTracker created Component instances with unnecessary privileges (Swing, 7020198)

Solution: Apply the appropriate updates.

This update can be installed with the yum update program. Use
su -c 'yum update java-1.6.0-openjdk' at the command line.
For more information, refer to Managing Software with yum,
available at

Risk factor : Critical

CVSS Score:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2011-0872
Cert/CC Advisory: TA11-201A
HPdes Security Advisory: HPSBMU02797
HPdes Security Advisory: HPSBMU02799
HPdes Security Advisory: HPSBUX02697
HPdes Security Advisory: SSRT100591
HPdes Security Advisory: SSRT100867
SuSE Security Announcement: SUSE-SA:2011:030 (Google Search)
SuSE Security Announcement: SUSE-SA:2011:032 (Google Search)
SuSE Security Announcement: SUSE-SA:2011:036 (Google Search)
SuSE Security Announcement: SUSE-SU-2011:0807 (Google Search)
SuSE Security Announcement: SUSE-SU-2011:0863 (Google Search)
SuSE Security Announcement: SUSE-SU-2011:0966 (Google Search)
SuSE Security Announcement: openSUSE-SU-2011:0633 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2011-0865
Debian Security Information: DSA-2311 (Google Search)
HPdes Security Advisory: HPSBUX02777
HPdes Security Advisory: SSRT100854
RedHat Security Advisories: RHSA-2013:1455
Common Vulnerability Exposure (CVE) ID: CVE-2011-0815
Common Vulnerability Exposure (CVE) ID: CVE-2011-0822
Common Vulnerability Exposure (CVE) ID: CVE-2011-0862
Common Vulnerability Exposure (CVE) ID: CVE-2011-0867
Common Vulnerability Exposure (CVE) ID: CVE-2011-0869
Common Vulnerability Exposure (CVE) ID: CVE-2011-0870
Common Vulnerability Exposure (CVE) ID: CVE-2011-0868
Common Vulnerability Exposure (CVE) ID: CVE-2011-0871
Common Vulnerability Exposure (CVE) ID: CVE-2011-0864
Common Vulnerability Exposure (CVE) ID: CVE-2010-4465
Debian Security Information: DSA-2224 (Google Search)
SuSE Security Announcement: SUSE-SA:2011:024 (Google Search)
SuSE Security Announcement: SUSE-SU-2011:0823 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2010-4469
BugTraq ID: 46400
XForce ISS Database: oracle-hotspot-code-exec(65399)
Common Vulnerability Exposure (CVE) ID: CVE-2010-4470
BugTraq ID: 46387
XForce ISS Database: oracle-runtime-dos(65404)
Common Vulnerability Exposure (CVE) ID: CVE-2010-4448
Common Vulnerability Exposure (CVE) ID: CVE-2010-4450
BugTraq ID: 46397
XForce ISS Database: oracle-java-launcher-code-exec(65406)
Common Vulnerability Exposure (CVE) ID: CVE-2010-4471
BugTraq ID: 46399
XForce ISS Database: oracle-runtime-information-disclosure(65405)
Common Vulnerability Exposure (CVE) ID: CVE-2010-4472
BugTraq ID: 46404
XForce ISS Database: oracle-java-xml-dos(65411)
Common Vulnerability Exposure (CVE) ID: CVE-2011-0706
BugTraq ID: 46439
XForce ISS Database: icedtea-jnlpclassloader-priv-esc(65534)
Common Vulnerability Exposure (CVE) ID: CVE-2010-4476
Debian Security Information: DSA-2161 (Google Search)
HPdes Security Advisory: HPSBMA02642
HPdes Security Advisory: HPSBMU02690
HPdes Security Advisory: HPSBNS02633
HPdes Security Advisory: HPSBOV02634
HPdes Security Advisory: HPSBOV02762
HPdes Security Advisory: HPSBTU02684
HPdes Security Advisory: HPSBUX02633
HPdes Security Advisory: HPSBUX02641
HPdes Security Advisory: HPSBUX02642
HPdes Security Advisory: HPSBUX02645
HPdes Security Advisory: HPSBUX02725
HPdes Security Advisory: HPSBUX02860
HPdes Security Advisory: SSRT100387
HPdes Security Advisory: SSRT100390
HPdes Security Advisory: SSRT100412
HPdes Security Advisory: SSRT100415
HPdes Security Advisory: SSRT100569
HPdes Security Advisory: SSRT100627
HPdes Security Advisory: SSRT100825
HPdes Security Advisory: SSRT101146
Common Vulnerability Exposure (CVE) ID: CVE-2011-0025
BugTraq ID: 46110;node=3bd328e4b515
XForce ISS Database: icedtea-jar-security-bypass(65151)
CopyrightCopyright (c) 2011 E-Soft Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2022 E-Soft Inc. All rights reserved.