Test ID:	1.3.6.1.4.1.25623.1.0.69877
Category:	Fedora Local Security Checks
Title:	Fedora Core 15 FEDORA-2011-8028 (java-1.6.0-openjdk)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to java-1.6.0-openjdk announced via advisory FEDORA-2011-8028. Update Information: http://blog.fuseyism.com/index.php/2011/06/08/icedtea6-188-198-and-1102-released/ References: [ 1 ] Bug #706139 - CVE-2011-0862 OpenJDK: integer overflows in JPEGImageReader and font SunLayoutEngine (2D, 7013519) https://bugzilla.redhat.com/show_bug.cgi?id=706139 [ 2 ] Bug #706245 - CVE-2011-0864 OpenJDK: JVM memory corruption via certain bytecode (HotSpot, 7020373) https://bugzilla.redhat.com/show_bug.cgi?id=706245 [ 3 ] Bug #706106 - CVE-2011-0865 OpenJDK: Deserialization allows creation of mutable SignedObject (Deserialization, 6618658) https://bugzilla.redhat.com/show_bug.cgi?id=706106 [ 4 ] Bug #706153 - CVE-2011-0867 OpenJDK: NetworkInterface information leak (Networking, 7013969) https://bugzilla.redhat.com/show_bug.cgi?id=706153 [ 5 ] Bug #706241 - CVE-2011-0868 OpenJDK: incorrect numeric type conversion in TransformHelper (2D, 7016495) https://bugzilla.redhat.com/show_bug.cgi?id=706241 [ 6 ] Bug #706234 - CVE-2011-0869 OpenJDK: unprivileged proxy settings change via SOAPConnection (SAAJ, 7013971) https://bugzilla.redhat.com/show_bug.cgi?id=706234 [ 7 ] Bug #706248 - CVE-2011-0871 OpenJDK: MediaTracker created Component instances with unnecessary privileges (Swing, 7020198) https://bugzilla.redhat.com/show_bug.cgi?id=706248 Solution: Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update java-1.6.0-openjdk' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2011-8028 Risk factor : Critical CVSS Score: 10.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0872 Cert/CC Advisory: TA11-201A http://www.us-cert.gov/cas/techalerts/TA11-201A.html http://security.gentoo.org/glsa/glsa-201406-32.xml HPdes Security Advisory: HPSBMU02797 http://marc.info/?l=bugtraq&m=134254957702612&w=2 HPdes Security Advisory: HPSBMU02799 http://marc.info/?l=bugtraq&m=134254866602253&w=2 HPdes Security Advisory: HPSBUX02697 http://marc.info/?l=bugtraq&m=132439520301822&w=2 HPdes Security Advisory: SSRT100591 HPdes Security Advisory: SSRT100867 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14241 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14915 http://secunia.com/advisories/44930 SuSE Security Announcement: SUSE-SA:2011:030 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00003.html SuSE Security Announcement: SUSE-SA:2011:032 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00002.html SuSE Security Announcement: SUSE-SA:2011:036 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00022.html SuSE Security Announcement: SUSE-SU-2011:0807 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00009.html SuSE Security Announcement: SUSE-SU-2011:0863 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00001.html SuSE Security Announcement: SUSE-SU-2011:0966 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00025.html SuSE Security Announcement: openSUSE-SU-2011:0633 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-06/msg00003.html Common Vulnerability Exposure (CVE) ID: CVE-2011-0865 Debian Security Information: DSA-2311 (Google Search) http://www.debian.org/security/2011/dsa-2311 HPdes Security Advisory: HPSBUX02777 http://marc.info/?l=bugtraq&m=133728004526190&w=2 HPdes Security Advisory: SSRT100854 http://www.mandriva.com/security/advisories?name=MDVSA-2011:126 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14081 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14463 http://www.redhat.com/support/errata/RHSA-2011-0856.html http://www.redhat.com/support/errata/RHSA-2011-0857.html http://www.redhat.com/support/errata/RHSA-2011-0860.html http://www.redhat.com/support/errata/RHSA-2011-0938.html http://www.redhat.com/support/errata/RHSA-2011-1087.html http://www.redhat.com/support/errata/RHSA-2011-1159.html http://www.redhat.com/support/errata/RHSA-2011-1265.html RedHat Security Advisories: RHSA-2013:1455 http://rhn.redhat.com/errata/RHSA-2013-1455.html http://secunia.com/advisories/44818 http://secunia.com/advisories/49198 Common Vulnerability Exposure (CVE) ID: CVE-2011-0815 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14335 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14896 Common Vulnerability Exposure (CVE) ID: CVE-2011-0822 Common Vulnerability Exposure (CVE) ID: CVE-2011-0862 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13317 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14541 Common Vulnerability Exposure (CVE) ID: CVE-2011-0867 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14240 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14693 Common Vulnerability Exposure (CVE) ID: CVE-2011-0869 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14338 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14644 Common Vulnerability Exposure (CVE) ID: CVE-2011-0870 Common Vulnerability Exposure (CVE) ID: CVE-2011-0868 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14264 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14827 Common Vulnerability Exposure (CVE) ID: CVE-2011-0871 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14112 Common Vulnerability Exposure (CVE) ID: CVE-2011-0864 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14225 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14632
Copyright	Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.