The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of JRE, JDK, SDK: two overflows

Synthesis of the vulnerability 

Two overflows permit a malicious applet to execute code on user's computer.
Impacted products: HP-UX, NLD, OES, openSUSE, Java Oracle, RHEL, SLES.
Severity of this bulletin: 3/4.
Number of vulnerabilities in this bulletin: 3.
Creation date: 20/12/2006.
Revision date: 11/01/2007.
Références of this threat: 102686, 102729, 102731, 6363511, 6363512, 6387628, 6393286, 6466389, 6469538, BID-21675, c00876579, CERTA-2006-AVI-570, CERTA-2007-AVI-121, CESA-2005-008, CVE-2006-6731, HPSBUX02196, RHSA-2007:0062-02, RHSA-2007:0072-01, RHSA-2007:0073-01, SSRT07138, SUSE-SA:2007:003, SUSE-SA:2007:010, VIGILANCE-VUL-6417, VU#149457, VU#939609.

Description of the vulnerability 

The JRE environment contains several errors.

An attacker can call filter() method of java.awt.image.ConvolveOp in order to generate an integer overflow during the allocation of buffer to store an image. [severity:3/4]

An attacker can call filter() method of java.awt.image.ConvolveOp in order to generate a buffer overflow during the copy of an array. [severity:3/4]

Several missing negative value checks may also be exploited. [severity:3/4]

The two overflows permit a malicious applet to execute code on user's computer.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This cybersecurity bulletin impacts software or systems such as HP-UX, NLD, OES, openSUSE, Java Oracle, RHEL, SLES.

Our Vigil@nce team determined that the severity of this cybersecurity weakness is important.

The trust level is of type confirmed by the editor, with an origin of document.

This bulletin is about 3 vulnerabilities.

An attacker with a expert ability can exploit this computer vulnerability bulletin.

Solutions for this threat 

JDK, JRE: version 5.0 Update 8.
Version 5.0 Update 8 is corrected:
  http://java.sun.com/javase/downloads/index_jdk5.jsp
  http://java.com/

SDK, JRE: version 1.4.2_13.
Version 1.4.2_13 is corrected:
  http://java.sun.com/j2se/1.4.2/download.html

SDK, JRE: version 1.3.1_19.
Version 1.3.1_19 is corrected:
  http://java.sun.com/j2se/1.3/download.html

HP-UX: revision 1.5.0.06, 1.4.2.12.00, 1.3.1.20 of JDK/JRE/SDK.
Versions 1.5.0.06, 1.4.2.12.00 and 1.3.1.20 are corrected:
  http://www.hp.com/go/java

RHEL 2.1: new IBMJava2 packages.
New packages are available:
Red Hat Enterprise Linux version 2.1:
  IBMJava2-JRE-1.3.1-12
  IBMJava2-SDK-1.3.1-11

RHEL Extras 4: new java-1.5.0-ibm packages.
New packages are available:
Red Hat Enterprise Linux version 4 Extras: java-1.5.0-ibm-1.5.0.3-1jpp.3.el4

RHEL Extras: new java-1.4.2-ibm packages.
New packages are available:
Red Hat Enterprise Linux version 3 Extras: java-1.4.2-ibm-1.4.2.7-1jpp.4.el3
Red Hat Enterprise Linux version 4 Extras: java-1.4.2-ibm-1.4.2.7-1jpp.4.el4

SUSE: new IBMJava2 packages.
New packages are available:
   UnitedLinux 1.0
     http://support.novell.com/techcenter/psdb/95188799cf297558f0fc915c9d248d1a.html
   SuSE Linux Openexchange Server 4
     http://support.novell.com/techcenter/psdb/95188799cf297558f0fc915c9d248d1a.html
   SuSE Linux Enterprise Server 8
     http://support.novell.com/techcenter/psdb/95188799cf297558f0fc915c9d248d1a.html
   SuSE Linux Standard Server 8
     http://support.novell.com/techcenter/psdb/95188799cf297558f0fc915c9d248d1a.html
   SuSE Linux School Server
     http://support.novell.com/techcenter/psdb/95188799cf297558f0fc915c9d248d1a.html
   SUSE LINUX Retail Solution 8
     http://support.novell.com/techcenter/psdb/95188799cf297558f0fc915c9d248d1a.html
   SUSE SLES 10
     http://support.novell.com/techcenter/psdb/8924ac6b994acb949a8ad3572aba51d6.html
   SLE SDK 10
     http://support.novell.com/techcenter/psdb/8924ac6b994acb949a8ad3572aba51d6.html
   Open Enterprise Server
     http://support.novell.com/techcenter/psdb/f5b3f5adf5613e923c01c813a0923b58.html
   Novell Linux POS 9
     http://support.novell.com/techcenter/psdb/f5b3f5adf5613e923c01c813a0923b58.html
   SUSE SLES 9
     http://support.novell.com/techcenter/psdb/f5b3f5adf5613e923c01c813a0923b58.html

SUSE: new java packages (09/01/2007).
New packages are available:
   openSUSE 10.2:
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/java-1_4_2-sun-*_update13-3.1.i586.rpm
   SUSE LINUX 10.1:
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/java-1_4_2-sun*-1.4.2.13-0.2.i586.rpm
   SUSE LINUX 10.0:
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/java-1_4_2*-1.4.2.13-0.1.i586.rpm
   SUSE LINUX 9.3:
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/java-1_4_2*-1.4.2.13-0.1.i586.rpm
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides a cybersecurity alert. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications.