Описание
ELSA-2011-1441: icedtea-web security update (MODERATE)
[1.0.6-1]
- Updated to 1.0.6
- Resolves: rhbz#744738
- Resolves: rhbz#745414
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
icedtea-web
1.0.6-1.el6_1
icedtea-web-javadoc
1.0.6-1.el6_1
Oracle Linux i686
icedtea-web
1.0.6-1.el6_1
icedtea-web-javadoc
1.0.6-1.el6_1
Связанные CVE
Связанные уязвимости
The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain.
The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain.
The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain.
The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x be ...
The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain.