SciLinux: CVE-2008-1185 java (jdk 1.5.0) SL4.x, SL5.x i386/x86_64
Summary
Date: Wed, 30 Jul 2008 15:25:26 -0500Reply-To: Troy DawsonSender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for java (jdk 1.5.0) on SL4.x, SL5.x i386/x86_64Comments: To: "scientific-linux-errata@fnal.gov" Synopsis: Critical: java (jdk 1.5.0) security updateIssue date: 2008-07-14CVE Names: CVE-2008-1185 CVE-2008-1186 CVE-2008-1187 CVE-2008-1188 CVE-2008-1189 CVE-2008-1190 CVE-2008-1191 CVE-2008-1192 CVE-2008-1193 CVE-2008-1194 CVE-2008-1195 CVE-2008-1196 CVE-2008-3103 CVE-2008-3104 CVE-2008-3107 CVE-2008-3111 CVE-2008-3112 CVE-2008-3113 CVE-2008-3114Flaws in the JRE allowed an untrusted application or applet to elevate itsprivileges. This could be exploited by a remote attacker to access localfiles or execute local applications accessible to the user running the JRE(CVE-2008-1185, CVE-2008-1186)A flaw was found in the Java XSLT processing classes. An untrustedapplication or applet could cause a denial of service, or execute arbitrarycode with the permissions of the user running the JRE. (CVE-2008-1187)Several buffer overflow flaws were found in Java Web Start (JWS). Anuntrusted JNLP application could access local files or execute localapplications accessible to the user running the JRE.(CVE-2008-1188, CVE-2008-1189, CVE-2008-1190, CVE-2008-1191, CVE-2008-1196)A flaw was found in the Java Plug-in. A remote attacker could bypass thesame origin policy, executing arbitrary code with the permissions of theuser running the JRE. (CVE-2008-1192)A flaw was found in the JRE image parsing libraries. An untrustedapplication or applet could cause a denial of service, or possible executearbitrary code with the permissions of the user running the JRE.(CVE-2008-1193)A flaw was found in the JRE color management library. An untrustedapplication or applet could trigger a denial of service (JVM crash).(CVE-2008-1194)The JRE allowed untrusted JavaScript code to create local networkconnections by the use of Java APIs. A remote attacker could use theseflaws to acesss local network services. (CVE-2008-1195)A vulnerability was found in the Java Management Extensions (JMX)management agent, when local monitoring is enabled. This allowed remoteattackers to perform illegal operations. (CVE-2008-3103)Multiple vulnerabilities with unsigned applets were reported. A remoteattacker could misuse an unsigned applet to connect to localhost servicesrunning on the host running the applet. (CVE-2008-3104)A Java Runtime Environment (JRE) vulnerability could be triggered by anuntrusted application or applet. A remote attacker could grant an untrustedapplet extended privileges such as reading and writing local files, orexecuting local programs. (CVE-2008-3107)Several buffer overflow vulnerabilities in Java Web Start were reported.These vulnerabilities may allow an untrusted Java Web Start application toelevate its privileges and thereby grant itself permission to read and/orwrite local files, as well as to execute local applications accessible tothe user running the untrusted application. (CVE-2008-3111)Two file processing vulnerabilities in Java Web Start were found. A remoteattacker, by means of an untrusted Java Web Start application, was able tocreate or delete arbitrary files with the permissions of the user runningthe untrusted application. (CVE-2008-3112, CVE-2008-3113)A vulnerability in Java Web Start when processing untrusted applicationswas reported. An attacker was able to acquire sensitive information, suchas the cache location. (CVE-2008-3114)SL 4.x SRPMS:java-1.5.0-sun-compat-1.5.0.16-1.1.sl.jpp.src.rpm i386:java-1.5.0-sun-compat-1.5.0.16-1.1.sl.jpp.noarch.rpmjdk-1.5.0_16-fcs.i586.rpm x86_64:java-1.5.0-sun-compat-1.5.0.16-1.1.sl.jpp.noarch.rpmjdk-1.5.0_16-fcs.i586.rpmSL 5.x SRPMS:java-1.5.0-sun-compat-1.5.0.16-1.1.sl5.jpp.src.rpm i386:java-1.5.0-sun-compat-1.5.0.16-1.1.sl5.jpp.noarch.rpmjdk-1.5.0_16-fcs.i586.rpm x86_64:java-1.5.0-sun-compat-1.5.0.16-1.1.sl5.jpp.noarch.rpmjdk-1.5.0_16-fcs.i586.rpmjdk-1.5.0_16-fcs.x86_64.rpm-Connie Sieh-Troy Dawsonlastline