1
PublicDateAtUSN: 2011-01-20
2
Candidate: CVE-2010-4351
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4351
6
http://www.zerodayinitiative.com/advisories/ZDI-11-014/
7
http://blog.fuseyism.com/index.php/2011/01/18/security-icedtea6-177-184-194-released/
8
https://usn.ubuntu.com/usn/usn-1052-1
9
https://usn.ubuntu.com/usn/usn-1055-1
11
The JNLP SecurityManager in IcedTea (IcedTea.so) 1.7 before 1.7.7, 1.8
12
before 1.8.4, and 1.9 before 1.9.4 for Java OpenJDK returns from the
13
checkPermission method instead of throwing an exception in certain
14
circumstances, which might allow context-dependent attackers to bypass the
15
intended security policy by creating instances of ClassLoader.
19
https://bugzilla.redhat.com/show_bug.cgi?id=663680
25
upstream_sun-java6: not-affected
27
hardy_sun-java6: not-affected
28
karmic_sun-java6: not-affected
29
lucid_sun-java6: not-affected
30
maverick_sun-java6: not-affected
31
natty_sun-java6: not-affected
32
oneiric_sun-java6: not-affected
36
upstream_sun-java5: not-affected
37
dapper_sun-java5: not-affected
38
hardy_sun-java5: not-affected
41
maverick_sun-java5: DNE
43
oneiric_sun-java5: DNE
47
upstream: http://icedtea.classpath.org/hg/release/icedtea6-1.9/rev/7ec6c82e69ee
48
upstream_openjdk-6: released (1.7.7,1.8.4,1.9.4)
50
hardy_openjdk-6: released (6b27-1.12.3-0ubuntu1~08.04.1)
51
karmic_openjdk-6: released (6b20-1.9.4-0ubuntu1~9.10.1)
52
lucid_openjdk-6: released (6b20-1.9.4-0ubuntu1~10.04.1)
53
maverick_openjdk-6: released (6b20-1.9.4-0ubuntu1)
54
natty_openjdk-6: released (6b21~pre1-0ubuntu1)
55
oneiric_openjdk-6: released (6b21~pre1-0ubuntu1)
56
devel_openjdk-6: released (6b21~pre1-0ubuntu1)
59
upstream_openjdk-6b18: released (1.7.7,1.8.4,1.9.4)
60
dapper_openjdk-6b18: DNE
61
hardy_openjdk-6b18: DNE
62
karmic_openjdk-6b18: released (6b18-1.8.4-0ubuntu1~9.10.1)
63
lucid_openjdk-6b18: released (6b18-1.8.4-0ubuntu1~10.04.1)
64
maverick_openjdk-6b18: released (6b18-1.8.5-0ubuntu1)
65
natty_openjdk-6b18: not-affected (6b18-1.8.8~pre1-0ubuntu1)
66
oneiric_openjdk-6b18: not-affected (6b18-1.8.8~pre1-0ubuntu1)
67
devel_openjdk-6b18: not-affected (6b18-1.8.8~pre1-0ubuntu1)
70
upstream_icedtea-web: needs-triage
71
dapper_icedtea-web: DNE
72
hardy_icedtea-web: DNE
73
karmic_icedtea-web: DNE
74
lucid_icedtea-web: not-affected (1.2-2ubuntu0.10.04.1)
75
maverick_icedtea-web: DNE
76
natty_icedtea-web: not-affected (1.1~20110406-0ubuntu1)
77
oneiric_icedtea-web: not-affected (1.1~20110406-0ubuntu1)
78
devel_icedtea-web: not-affected (1.1~20110406-0ubuntu1)