CVE-2007-2788 - Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit (JDK) before 1

CVE-2007-2788

Summary

Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit (JDK) before 1.5.0_11-b03 and 1.6.x before 1.6.0_01-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.2_14 and earlier, and SDK and JRE 1.3.1_20 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service (JVM crash) via a crafted JPEG or BMP file that triggers a buffer overflow.

References

Vulnerable Configurations

cpe:2.3:a:sun:jdk:1.5.0:-:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:-:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update1:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update1:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update10:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update10:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update2:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update2:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update3:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update3:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update4:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update4:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update5:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update5:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update6:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update6:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update7:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update7:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update8:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update8:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update9:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.5.0:update9:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.6.0:-:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.6.0:-:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1:-:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1:-:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_2:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_2:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_03:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_03:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_04:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_04:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_05:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_05:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_06:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_06:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_07:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_07:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_08:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_08:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_09:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_09:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_10:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_10:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_11:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_11:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_12:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_12:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_13:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_13:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_14:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_14:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_15:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_15:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_16:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_16:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_17:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_17:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_18:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_18:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_19:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_19:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_20:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.3.1_20:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2:-:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2:-:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_1:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_1:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_2:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_2:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_3:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_3:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_4:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_4:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_5:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_5:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_6:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_6:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_7:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_7:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_8:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_8:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_9:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_9:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_10:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_10:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_11:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_11:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_12:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_12:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_13:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_13:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_14:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.4.2_14:*:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:-:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:-:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update1:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update1:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update10:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update10:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update2:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update2:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update3:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update3:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update4:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update4:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update5:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update5:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update6:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update6:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update7:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update7:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update8:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update8:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update9:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.5.0:update9:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.6.0:-:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.6.0:-:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_01:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_01:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_01a:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_01a:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_02:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_02:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_03:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_03:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_04:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_04:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_05:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_05:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_06:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_06:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_07:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_07:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_08:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_08:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_09:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_09:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_10:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_10:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_11:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_11:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_12:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_12:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_13:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_13:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_14:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_14:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_15:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_15:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_16:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_16:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_17:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_17:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_18:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_18:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_19:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_19:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_20:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.3.1_20:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_1:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_1:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_2:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_2:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_3:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_3:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_4:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_4:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_5:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_5:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_6:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_6:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_7:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_7:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_8:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_8:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_9:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_9:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_10:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_10:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_11:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_11:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_12:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_12:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_13:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_13:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_14:*:*:*:*:*:*:*
cpe:2.3:a:sun:sdk:1.4.2_14:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 01-08-2019 - 12:21)
Impact:
Exploitability:

CWE

CWE-189

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

oval via4

accepted

2010-09-06T04:11:10.970-04:00

class

vulnerability

contributors

name	Aharon Chernin
organization	SCAP.com, LLC

description

family

unix

oval:org.mitre.oval:def:11700

status

accepted

submitted

2010-07-09T03:56:16-04:00

title

version

redhat via4

advisories

rhsa
id RHSA-2007:0817
rhsa
id RHSA-2007:0829
rhsa
id RHSA-2007:0956
rhsa
id RHSA-2007:1086
rhsa
id RHSA-2008:0100
rhsa
id RHSA-2008:0133
rhsa
id RHSA-2008:0261

rpms

java-1.4.2-ibm-0:1.4.2.9-1jpp.1.el3
java-1.4.2-ibm-0:1.4.2.9-1jpp.1.el4
java-1.4.2-ibm-0:1.4.2.9-1jpp.1.el5
java-1.4.2-ibm-demo-0:1.4.2.9-1jpp.1.el3
java-1.4.2-ibm-demo-0:1.4.2.9-1jpp.1.el4
java-1.4.2-ibm-demo-0:1.4.2.9-1jpp.1.el5
java-1.4.2-ibm-devel-0:1.4.2.9-1jpp.1.el3
java-1.4.2-ibm-devel-0:1.4.2.9-1jpp.1.el4
java-1.4.2-ibm-devel-0:1.4.2.9-1jpp.1.el5
java-1.4.2-ibm-javacomm-0:1.4.2.9-1jpp.1.el4
java-1.4.2-ibm-javacomm-0:1.4.2.9-1jpp.1.el5
java-1.4.2-ibm-jdbc-0:1.4.2.9-1jpp.1.el3
java-1.4.2-ibm-jdbc-0:1.4.2.9-1jpp.1.el4
java-1.4.2-ibm-jdbc-0:1.4.2.9-1jpp.1.el5
java-1.4.2-ibm-plugin-0:1.4.2.9-1jpp.1.el3
java-1.4.2-ibm-plugin-0:1.4.2.9-1jpp.1.el4
java-1.4.2-ibm-plugin-0:1.4.2.9-1jpp.1.el5
java-1.4.2-ibm-src-0:1.4.2.9-1jpp.1.el3
java-1.4.2-ibm-src-0:1.4.2.9-1jpp.1.el4
java-1.4.2-ibm-src-0:1.4.2.9-1jpp.1.el5
java-1.5.0-ibm-1:1.5.0.5-1jpp.0.1.el5
java-1.5.0-ibm-1:1.5.0.5-1jpp.2.el4
java-1.5.0-ibm-demo-1:1.5.0.5-1jpp.0.1.el5
java-1.5.0-ibm-demo-1:1.5.0.5-1jpp.2.el4
java-1.5.0-ibm-devel-1:1.5.0.5-1jpp.0.1.el5
java-1.5.0-ibm-devel-1:1.5.0.5-1jpp.2.el4
java-1.5.0-ibm-javacomm-1:1.5.0.5-1jpp.0.1.el5
java-1.5.0-ibm-javacomm-1:1.5.0.5-1jpp.2.el4
java-1.5.0-ibm-jdbc-1:1.5.0.5-1jpp.0.1.el5
java-1.5.0-ibm-jdbc-1:1.5.0.5-1jpp.2.el4
java-1.5.0-ibm-plugin-1:1.5.0.5-1jpp.0.1.el5
java-1.5.0-ibm-plugin-1:1.5.0.5-1jpp.2.el4
java-1.5.0-ibm-src-1:1.5.0.5-1jpp.0.1.el5
java-1.5.0-ibm-src-1:1.5.0.5-1jpp.2.el4
java-1.5.0-bea-0:1.5.0.11-1jpp.1.el5
java-1.5.0-bea-demo-0:1.5.0.11-1jpp.1.el5
java-1.5.0-bea-devel-0:1.5.0.11-1jpp.1.el5
java-1.5.0-bea-jdbc-0:1.5.0.11-1jpp.1.el5
java-1.5.0-bea-missioncontrol-0:1.5.0.11-1jpp.1.el5
java-1.5.0-bea-src-0:1.5.0.11-1jpp.1.el5
java-1.4.2-bea-0:1.4.2.15-1jpp.2.el4
java-1.4.2-bea-devel-0:1.4.2.15-1jpp.2.el4
java-1.4.2-bea-jdbc-0:1.4.2.15-1jpp.2.el4
java-1.4.2-bea-0:1.4.2.16-1jpp.1.el3
java-1.4.2-bea-0:1.4.2.16-1jpp.1.el5
java-1.4.2-bea-demo-0:1.4.2.16-1jpp.1.el5
java-1.4.2-bea-devel-0:1.4.2.16-1jpp.1.el3
java-1.4.2-bea-devel-0:1.4.2.16-1jpp.1.el5
java-1.4.2-bea-jdbc-0:1.4.2.16-1jpp.1.el3
java-1.4.2-bea-jdbc-0:1.4.2.16-1jpp.1.el5
java-1.4.2-bea-missioncontrol-0:1.4.2.16-1jpp.1.el5
java-1.4.2-bea-src-0:1.4.2.16-1jpp.1.el5
jabberd-0:2.0s10-3.38.rhn
java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el4
java-1.4.2-ibm-devel-0:1.4.2.10-1jpp.2.el4
jfreechart-0:0.9.20-3.rhn
openmotif21-0:2.1.30-11.RHEL4.6
openmotif21-debuginfo-0:2.1.30-11.RHEL4.6
perl-Crypt-CBC-0:2.24-1.el4
rhn-apache-0:1.3.27-36.rhn.rhel4
rhn-modjk-ap13-0:1.2.23-2rhn.rhel4
rhn-modperl-0:1.29-16.rhel4
rhn-modssl-0:2.8.12-8.rhn.10.rhel4
tomcat5-0:5.0.30-0jpp_10rh
jabberd-0:2.0s10-3.37.rhn
jabberd-0:2.0s10-3.38.rhn
java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el3
java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el4
java-1.4.2-ibm-devel-0:1.4.2.10-1jpp.2.el3
java-1.4.2-ibm-devel-0:1.4.2.10-1jpp.2.el4
jfreechart-0:0.9.20-3.rhn
openmotif21-0:2.1.30-11.RHEL4.6
openmotif21-0:2.1.30-9.RHEL3.8
openmotif21-debuginfo-0:2.1.30-11.RHEL4.6
openmotif21-debuginfo-0:2.1.30-9.RHEL3.8
perl-Crypt-CBC-0:2.24-1.el3
perl-Crypt-CBC-0:2.24-1.el4
rhn-apache-0:1.3.27-36.rhn.rhel3
rhn-apache-0:1.3.27-36.rhn.rhel4
rhn-modjk-ap13-0:1.2.23-2rhn.rhel3
rhn-modjk-ap13-0:1.2.23-2rhn.rhel4
rhn-modperl-0:1.29-16.rhel3
rhn-modperl-0:1.29-16.rhel4
rhn-modssl-0:2.8.12-8.rhn.10.rhel3
rhn-modssl-0:2.8.12-8.rhn.10.rhel4
tomcat5-0:5.0.30-0jpp_10rh

refmap via4

apple	APPLE-SA-2007-12-14
bea	BEA07-177.00
bid	24004 24267
cert-vn	VU#138545
confirm	http://support.novell.com/techcenter/psdb/4f850d1e2b871db609de64ec70f0089c.html http://support.novell.com/techcenter/psdb/d2f549cc040cd81ae4a268bb5edfe918.html
gentoo	GLSA-200705-23 GLSA-200706-08 GLSA-200709-15 GLSA-200804-20 GLSA-200804-28 GLSA-200806-11
misc	http://docs.info.apple.com/article.html?artnum=307177 http://scary.beasts.org/security/CESA-2006-004.html
mlist	[Security-announce] 20080107 VMSA-2008-0002 Low severity security update for VirtualCenter and ESX Server 3.0.2, and ESX 3.0.1
sectrack	1018182
secunia	25295 25474 25832 26049 26119 26311 26369 26631 26645 26933 27203 27266 28056 28115 28365 29340 29858 30780 30805
sunalert	102934 200856
suse	SUSE-SA:2007:045 SUSE-SA:2007:056
vim	20070703 Sun JDK Confusion 20070704 [theall at tenablesecurity.com: Sun JDK Confusion] (fwd) 20070711 Sun JDK Confusion 20071218 Sun JDK Confusion Revisited
vupen	ADV-2007-1836 ADV-2007-3009 ADV-2007-4224 ADV-2008-0065
xf	sun-java-image-bo(34652) sunjava-iccprofile-overflow(34318)

Last major update

01-08-2019 - 12:21

Published

22-05-2007 - 00:30

Last modified

01-08-2019 - 12:21