Home page logo
/

oss-sec logo oss-sec mailing list archives

IcedTea-Web CVE-2012-4540
From: Tomas Hoger <thoger () redhat com>
Date: Wed, 7 Nov 2012 19:46:27 +0100

Hi!

IcedTea-Web versions 1.1.7, 1.2.2 and 1.3.1 that were just released fix
a buffer overflow IcedTeaScriptableJavaObject::invoke.  The issue got
CVE-2012-4540 assigned.

http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-November/020775.html
http://icedtea.classpath.org/hg/release/icedtea-web-1.3/rev/e7970f3da5fe

-- 
Tomas Hoger / Red Hat Security Response Team


  By Date           By Thread  

Current thread:
  • IcedTea-Web CVE-2012-4540 Tomas Hoger (Nov 07)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]