oss-sec mailing list archives
IcedTea-Web CVE-2012-4540
From: Tomas Hoger <thoger () redhat com>
Date: Wed, 7 Nov 2012 19:46:27 +0100
Hi! IcedTea-Web versions 1.1.7, 1.2.2 and 1.3.1 that were just released fix a buffer overflow IcedTeaScriptableJavaObject::invoke. The issue got CVE-2012-4540 assigned. http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-November/020775.html http://icedtea.classpath.org/hg/release/icedtea-web-1.3/rev/e7970f3da5fe -- Tomas Hoger / Red Hat Security Response Team
Current thread:
- IcedTea-Web CVE-2012-4540 Tomas Hoger (Nov 07)