drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mangelnde Rechteprüfung in java-1.7.0-openjdk
| Name: |
Mangelnde Rechteprüfung in java-1.7.0-openjdk |
|
| ID: |
FEDORA-2012-13100 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora 18 |
|
| Datum: |
Di, 18. September 2012, 13:18 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4681 |
|
| Applikationen: |
OpenJDK |
|
Originalnachricht |
Name : java-1.7.0-openjdk
Product : Fedora 18
Version : 1.7.0.6
Release : 2.3.1.fc18.2
URL : http://openjdk.java.net/
Summary : OpenJDK Runtime Environment
Description :
The OpenJDK runtime environment.
-------------------------------------------------------------------------------
-
Update Information:
This update is fixing recent important security impact. A Common Vulnerability
Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE.
It was discovered that the Beans component in OpenJDK did not perform
permission checks properly. An untrusted Java application or applet could use this flaw to use classes from restricted packages, allowing it to bypass Java sandbox restrictions. (CVE-2012-4681)
security-icedtea6-1-10-9-1-11-4-icedtea-2-3-2-released
-------------------------------------------------------------------------------
-
This update can be installed with the "yum" update program. Use
su -c 'yum update java-1.7.0-openjdk' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|
