1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
|
PublicDate: 2008-01-09
Candidate: CVE-2007-0012
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0012
Description:
Sun JRE 5.0 before update 14 allows remote attackers to cause a denial of
service (Internet Explorer crash) via an object tag with an encoded applet
and an undefined name attribute, which triggers a NULL pointer dereference
in jpiexp32.dll when the applet is decoded and passed to the JVM.
Ubuntu-Description:
Notes:
Bugs:
jdstrand> browser bug and almost definitely Windows specific
mdeslaur> advisory says java6 is not affected
Priority: negligible
Assigned-to:
Patches_sun-java5:
upstream_sun-java5: 1.5.0-14
dapper_sun-java5: ignored (reached end-of-life)
edgy_sun-java5: needed (reached end-of-life)
feisty_sun-java5: needed (reached end-of-life)
gutsy_sun-java5: needed (reached end-of-life)
hardy_sun-java5: not-affected (1.5.0-14-3)
intrepid_sun-java5: not-affected (1.5.0-14-3)
jaunty_sun-java5: not-affected (1.5.0-14-3)
karmic_sun-java5: DNE
devel_sun-java5: DNE
Patches_sun-java6:
upstream_sun-java6: not-affected
dapper_sun-java6: DNE
edgy_sun-java6: DNE
feisty_sun-java6: needs-triage (reached end-of-life)
gutsy_sun-java6: needs-triage (reached end-of-life)
hardy_sun-java6: not-affected
intrepid_sun-java6: not-affected
jaunty_sun-java6: not-affected
karmic_sun-java6: not-affected
devel_sun-java6: not-affected
|