Višestruki propusti paketa java-1_4

U radu programskog paketa java-1_4_2-ibm-sap uočeno je više sigurnosnih propusta. Udaljenim napadačima omogućuju utjecaj na povjerljivost, dostupnost i integritet podataka.

Paket:
Operacijski sustavi:	SUSE Linux Enterprise Server (SLES) 11
Kritičnost:	7.4
Problem:	nespecificirana pogreška, pogreška u programskoj komponenti
Iskorištavanje:	udaljeno
Posljedica:	izmjena podataka
Rješenje:	programska zakrpa proizvođača
CVE:	CVE-2011-3563, CVE-2012-0499, CVE-2012-0502, CVE-2012-0503, CVE-2012-0505, CVE-2012-0506
Izvorni ID preporuke:	SUSE-SU-2012:1013-1
Izvor:	SUSE

Problem:
Propusti su posljedica višestrukih nespecificiranih ranjivosti u komponenti Java Runtime Environment (JRE).
Posljedica:
Napadači ih mogu iskoristiti kako bi utjecali na povjerljivost, dostupnost i integritet podataka.
Rješenje:
Svim se korisnicima preporuča instalacija nadogradnje.

Izvorni tekst preporuke

   SUSE Security Update: Security update for java-1_4_2-ibm-sap
______________________________________________________________________________

Announcement ID:    SUSE-SU-2012:1013-1
Rating:             important
References:         #768611 
Affected Products:
                    SUSE Linux Enterprise for SAP Applications 11 SP2
______________________________________________________________________________

   An update that contains security fixes can now be installed.

Description:


   IBM Java 1.4.2 SR13 FP12 has been released which fixes
   various bugs and  security issues.

   The CVEs being addressed are CVE-2011-3563
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3563
   > ,  CVE-2012-0499
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0499
   >  , CVE-2012-0502
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0502
   > ,  CVE-2012-0503
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0503
   >  , CVE-2012-0505
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0505
   > and  CVE-2012-0506
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0506
   >  .

   Further information on this update is available from
   http://www.ibm.com/developerworks/java/jdk/alerts/
   <http://www.ibm.com/developerworks/java/jdk/alerts/> .

Indications:

   Everyone using java-1_4_2-sap should update.

Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise for SAP Applications 11 SP2:

      zypper in -t patch slesapp2-java-1_4_2-ibm-sap-6637

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE Linux Enterprise for SAP Applications 11 SP2 (x86_64):

      java-1_4_2-ibm-sap-1.4.2_sr13.12-0.3.1
      java-1_4_2-ibm-sap-devel-1.4.2_sr13.12-0.3.1


References:

   https://bugzilla.novell.com/768611
  
http://download.novell.com/patch/finder/?keywords=f91fba551e97a31809b6ccaf5acae74f

-- 
To unsubscribe, e-mail: Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
For additional commands, e-mail: Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.

Višestruki propusti paketa java-1_4_2-ibm-sap

Tražilica portala

Aktivnosti

O CIS-u

Posljednje vijesti

Posljednji dokumenti

Višestruki propusti paketa java-1_4_2-ibm-sap

Tražilica portala

Aktivnosti

O CIS-u

Posljednje sigurnosne preporuke

Posljednje vijesti

Popularni članci

Posljednji dokumenti