Bug 236893
Summary: | CVE-2007-0243 GIF buffer overflow | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 2.1 | Reporter: | Mark J. Cox <mjc> |
Component: | IBMJava2-JRE | Assignee: | Thomas Fitzsimmons <fitzsim> |
Status: | CLOSED ERRATA | QA Contact: | |
Severity: | urgent | Docs Contact: | |
Priority: | urgent | ||
Version: | 2.1 | CC: | fitzsim |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | reported=20070417,source=internet,impact=important,public=20070117 | ||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2007-04-26 17:49:41 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Mark J. Cox
2007-04-18 10:10:36 UTC
We shipped IBM JRE version 1.3.1 with RHEL2.1; note that the IBM page http://www-128.ibm.com/developerworks/java/jdk/alerts/ states that there is no 1.3.1 update, but "1.3.1 iFixes are available on request" (In reply to comment #1) > We shipped IBM JRE version 1.3.1 with RHEL2.1; note that the IBM page > http://www-128.ibm.com/developerworks/java/jdk/alerts/ states that there is no > 1.3.1 update, but "1.3.1 iFixes are available on request" I've requested these updates from my IBM contact. This flaw was fixe din Java 1.3.1, which we released in RHSA-2007:0072. |