Release Notes
8
Bug
Description
Errata RHSA-2007-0829
1
Bug #239660
CVE-2007-2435 javaws vulnerabilities
Bug #250725
CVE-2007-2788 Integer overflow in the
embedded ICC profile image parser in Sun Java
Development Kit
Bug #250729
CVE-2007-2789 BMP image parser vulnerability
Bug #242595
CVE-2007-3004 Integer overflow in IBM JDK's
ICC profile parser
Bug #250733
CVE-2007-3005 Unspecified vulnerability in Sun
JRE
Bug #246765
CVE-2007-3503 HTML files generated with
Javadoc are vulnerable to a XSS
Bug #248864
CVE-2007-3655 A buffer overflow vulnerability in
Java Web Start URL parsing code
Bug #249533
CVE-2007-3922 Vulnerability in the Java
Runtime Environment May Allow an Untrusted
Applet to Circumvent Network Access
Restrictions
Errata RHSA-2010-0130
2
Bug #533125
CVE-2009-3555 TLS: MITM attacks via session
renegotiation
Table 2. CVEs Fixed in JRE/JDK Errata Updates
3.3.1.2. Installing the Required JRE and JDK on Red Hat Enterprise Linux 4
1. Download the
java-1.5.0-ibm-1.5.0.11.1-1jpp.3.el4
and
java-1.5.0-ibm-
devel-1.5.0.11.1-1jpp.3.el4
packages from the latest errata update,
Errata
RHSA-2010-0130
3
.
2. Install the packages. For example, for the 32-bit packages:
rpm --Uvh java-1.5.0-ibm-1.5.0.11.1-1jpp.3.el4.i386.rpm java-1.5.0-ibm-
devel-1.5.0.11.1-1jpp.3.el4.i386.rpm
3. Make sure that the IBM Java 1.5.0 is selected as the default JRE and the the IBM 5.0 JDK is
available:
/usr/sbin/alternatives ---config java
There are 2 programs which provide -'java'.
Selection Command
-----------------------------------------------
*+ 1 -/usr/lib/jvm/jre-1.5.0-ibm/bin/java
2 -/usr/lib/jvm/jre-1.4.2-sun/bin/java
Enter to keep the current sel], or type selection number: 1
/usr/sbin/alternatives ---config javac
Содержание CERTIFICATE 7.3 RELEASE NOTES
Страница 24: ...24 ...