Описание
Integer overflow in the JAR unpacking utility (unpack200) in the unpack library (unpack.dll) in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows untrusted applications and applets to gain privileges via a Pack200 compressed JAR file that triggers a heap-based buffer overflow.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 6b14-0ubuntu4 |
| gutsy | DNE | |
| hardy | released | 6b11-2ubuntu2.1 |
| intrepid | released | 6b12-0ubuntu6.1 |
| jaunty | not-affected | 6b14-0ubuntu4 |
| karmic | not-affected | 6b14-0ubuntu4 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | DNE | |
| gutsy | ignored | end of life, was needs-triage |
| hardy | released | 1.5.0-22-0ubuntu0.8.04 |
| intrepid | released | 1.5.0-19-0ubuntu0.8.10 |
| jaunty | released | 1.5.0-19-0ubuntu0.9.04 |
| karmic | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | released | 6.19-0ubuntu1 |
| gutsy | ignored | end of life, was needs-triage |
| hardy | released | 6-17-0ubuntu1.8.04 |
| intrepid | released | 6-14-0ubuntu1.8.10 |
| jaunty | released | 6-16-0ubuntu1.9.04 |
| karmic | released | 6-15-1 |
| upstream | needs-triage |
Показывать по
9.3 Critical
CVSS2
Связанные уязвимости
Integer overflow in the JAR unpacking utility (unpack200) in the unpack library (unpack.dll) in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows untrusted applications and applets to gain privileges via a Pack200 compressed JAR file that triggers a heap-based buffer overflow.
Integer overflow in the JAR unpacking utility (unpack200) in the unpack library (unpack.dll) in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows untrusted applications and applets to gain privileges via a Pack200 compressed JAR file that triggers a heap-based buffer overflow.
Integer overflow in the JAR unpacking utility (unpack200) in the unpac ...
Integer overflow in the JAR unpacking utility (unpack200) in the unpack library (unpack.dll) in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows untrusted applications and applets to gain privileges via a Pack200 compressed JAR file that triggers a heap-based buffer overflow.
9.3 Critical
CVSS2