SUSE: 2019:2033-1 Important: Icedtea-Web Security Issues Fixed
suse
July 31, 2019
An update that fixes three vulnerabilities is now available
Summary
This update for icedtea-web to version 1.7.2 fixes the following issues:
Security issues fixed:
- CVE-2019-10181: Fixed an unsigned code injection in a signed JAR file
(bsc#1142835)
- CVE-2019-10182: Fixed a path traversal while processing
References
#1142825 #1142832 #1142835
Cross- CVE-2019-10181 CVE-2019-10182 CVE-2019-10185
Affected Products:
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
https://www.suse.com/security/cve/CVE-2019-10181.html
https://www.suse.com/security/cve/CVE-2019-10182.html
https://www.suse.com/security/cve/CVE-2019-10185.html
https://bugzilla.suse.com/1142825
https://bugzilla.suse.com/1142832
https://bugzilla.suse.com/1142835
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2019:2033-1
Rating: important
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!