PM13407: SUN SECURITY BULLETIN 6909600

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • Error Message: N/A
    .
    Stack Trace: N/A
    .
    An integer overflow vulnerability in the Java Runtime
    Environment with processing audio files may allow an untrusted
    applet or Java Web Start application to escalate privileges.
    

Local fix

Problem summary

  • An integer overflow condition was not taken care in the code.
    

Problem conclusion

  • This defect will be fixed in:
    1.4.2 142 SR13 FP5
    .
    JVM has been updated to avoid the integer overflow
    vulnerability.
    .
    To obtain the fix:
    Install build 20100526 or later
    

Temporary fix

Comments

APAR Information

  • APAR number

    PM13407

  • Reported component name

    JAVA(1.3/1.4 CO

  • Reported component ID

    5648C9800

  • Reported release

    42A

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2010-04-30

  • Closed date

    2010-06-22

  • Last modified date

    2010-06-22

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    JAVA(1.3/1.4 CO

  • Fixed component ID

    5648C9800

Applicable component levels

  • R42A PSN

       UP

  • R42L PSN

       UP

  • R42W PSN

       UP

  • R420 PSN

       UP



Rate this page:

(0 users)Average rating

Document information


More support for:

z/OS family

Software version:

1.4.2

Reference #:

PM13407

Modified date:

2010-06-22

Translate my page

Machine Translation

Content navigation