| Description: | Summary:
The remote host is missing an update for the 'java-1.6.0-openjdk'
package(s) announced via the referenced advisory.
Vulnerability Insight:
Multiple security issues were identified and fixed in OpenJDK
(icedtea6):
* S7079902, CVE-2012-1711: Refine CORBA data models
* S7143617, CVE-2012-1713: Improve fontmanager layout lookup operations
* S7143614, CVE-2012-1716: SynthLookAndFeel stability improvement
* S7143606, CVE-2012-1717: File.createTempFile should be improved
for temporary files created by the platform.
* S7143872, CVE-2012-1718: Improve certificate extension processing
* S7143851, CVE-2012-1719: Improve IIOP stub and tie generation in RMIC
* S7152811, CVE-2012-1723: Issues in client compiler
* S7157609, CVE-2012-1724: Issues with loop
* S7160757, CVE-2012-1725: Problem with hotspot/runtime_classfile
* S7110720: Issue with vm config file loadingIssue with vm config
file loading
* S7145239: Finetune package definition restriction
* S7160677: missing else in fix for 7152811
The updated packages provides icedtea6-1.11.3 which is not vulnerable
to these issues.
Affected Software/OS:
java-1.6.0-openjdk on Mandriva Linux 2011.0,
Mandriva Enterprise Server 5.2,
Mandriva Linux 2010.1
Solution:
Please Install the Updated Packages.
CVSS Score:
10.0
CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
