Bug 236892
| Summary: | CVE-2007-0243 GIF buffer overflow | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 5 | Reporter: | Mark J. Cox <mjc> |
| Component: | java-1.4.2-ibm | Assignee: | Thomas Fitzsimmons <fitzsim> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | urgent | Docs Contact: | |
| Priority: | urgent | ||
| Version: | 5.0 | Keywords: | Security |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | reported=20070417,source=internet,impact=critical,public=20070417 | ||
| Fixed In Version: | RHSA-2007-0166 | Doc Type: | Bug Fix |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2007-04-25 10:04:33 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 237283, 237284 | ||
|
Description
Mark J. Cox
2007-04-18 10:09:35 UTC
We're going to label this with impact=critical rather than important and we were not able to prove this issue could not allow a malicious applet the ability to run arbitrary code. This issue was reported by IBM as affecting IBM Java on 20070417. An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2007-0166.html |