SUSE Linux 11 SP3: SUSE-SU-2013:1174-1 Important: IcedTea-Web Fixes
suse
July 10, 2013
An update that fixes four vulnerabilities is now available
Summary
This update to IcedTea-Web 1.4 provides the following fixes and enhancements: * Security updates o CVE-2013-1926, RH916774: Class-loader incorrectly shared for applets with same relative-path o CVE-2013-1927, RH884705: fixed gifar vulnerabilit o CVE-2012-3422, RH840592: Potential read from an uninitialized memory location o CVE-2012-3423, RH841345: Incorrect handling of not 0-terminated strings o CVE-2013-1927, RH884705: fixed gifar vulnerability o CVE-2013-1926, RH916774: Class-loader incorrectly shared for applets with same relative-path. * NetX o PR1027: DownloadService is not supported by IcedTea-Web o PR725: JNLP applications will prompt for creating desktop shortcuts every time they are run o PR1292: Javaws does not resolve versioned jar names with periods correctly o PR580: loads
Topics Covered
References
#815596 #818768 #825880
Cross- CVE-2012-3422 CVE-2012-3423 CVE-2013-1926
CVE-2013-1927
Affected Products:
SUSE Linux Enterprise Desktop 11 SP3
https://www.suse.com/security/cve/CVE-2012-3422.html
https://www.suse.com/security/cve/CVE-2012-3423.html
https://www.suse.com/security/cve/CVE-2013-1926.html
https://www.suse.com/security/cve/CVE-2013-1927.html
https://login.microfocus.com/nidp/app/login?sid=0
https://login.microfocus.com/nidp/app/login?sid=0
https://login.microfocus.com/nidp/app/login?sid=0
https://login.microfocus.com/nidp/app/login?sid=0
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2013:1174-1
Rating: important
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!