First published: Wed Oct 21 2009(Updated: )
Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, does not prevent the existence of children of a resurrected ClassLoader, which allows remote attackers to gain privileges via unspecified vectors, related to an "information leak vulnerability," aka Bug Id 6636650.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Sun JRE | =1.6.0-update_3 | |
Sun JRE | =1.5.0-update_14 | |
Sun JRE | =1.6.0-update_5 | |
Sun JRE | =1.5.0-update_13 | |
Sun JRE | =1.5.0-update_6 | |
Sun JRE | =1.5.0-update_11 | |
Sun JRE | =1.6.0-update_13 | |
Sun JRE | =1.5.0-update_12 | |
Sun JRE | =1.6.0-update_1 | |
Sun JRE | =1.6.0-update_2 | |
Sun JRE | =1.6.0-update_15 | |
Sun JRE | =1.5.0-update_15 | |
Sun JRE | =1.5.0-update_5 | |
Sun JRE | =1.6.0-update_6 | |
Sun JRE | =1.5.0-update_3 | |
Sun JRE | =1.5.0-update_19 | |
Sun JRE | =1.5.0-update_16 | |
Sun Openjdk | ||
Sun JRE | =1.6.0-update_10 | |
Sun JRE | =1.5.0-update_2 | |
Sun JRE | <=1.5.0 | |
Sun JRE | =1.5.0-update_18 | |
Sun JRE | =1.5.0-update_20 | |
Sun JRE | =1.6.0-update_8 | |
Sun JRE | =1.5.0-update_8 | |
Sun JRE | =1.5.0-update_1 | |
Sun JRE | =1.5.0-update_17 | |
Sun JRE | =1.5.0-update_4 | |
Sun JRE | =1.5.0-update10 | |
Sun JRE | =1.6.0-update_7 | |
Sun JRE | =1.6.0-update_14 | |
Sun JRE | =1.5.0-update_7 | |
Sun JRE | <=1.6.0 | |
Sun JRE | =1.6.0-update_4 | |
Sun JRE | =1.5.0-update_9 | |
Sun JRE | =1.6.0-update_9 | |
Sun JRE | =1.6.0-update_12 | |
Sun JRE | =1.6.0-update_11 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.