CVE-2010-4476

Executive Summary

Informations
Name	CVE-2010-4476	First vendor Publication	2011-02-17
Vendor	Cve	Last vendor Modification	2012-11-05

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score	5	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentification	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4476

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:14589

Oval ID:	oval:org.mitre.oval:def:14589
Title:	HP-UX Apache Running Tomcat Servlet Engine, Remote Information Disclosure, Authentication Bypass, Cross-Site Scripting (XSS), Unauthorized Access, Denial of Service (DoS)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4476	Version:	4
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.23 AND HP-UX B.11.31 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.34.01

Definition Id: oval:org.mitre.oval:def:14328

Oval ID:	oval:org.mitre.oval:def:14328
Title:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-4476	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012	Product(s):	Java Development Kit Java Runtime Environment
Definition Synopsis:
Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24 AND Java SE Development Kit 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 AND Java SE Runtime Environment 6 is installed OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Runtime Environment is less than 1.5.0:update28 AND Java SE Runtime Environment 5 is installed OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0 Determine if the version of Java Development Kit is less than 1.5.0:update28 AND Java SE Development Kit 5 is installed

Definition Id: oval:org.mitre.oval:def:12745

Oval ID:	oval:org.mitre.oval:def:12745
Title:	HP-UX Apache Web Server, Remote Information Disclosure, Cross-Site Scripting (XSS), Denial of Service (DoS)
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4476	Version:	4
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.23 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.30.04 OR Criteria meets HP Security Bulletin HPSBUX02645 HP-UX B.11.31 AND filesets tests hpuxwsAPACHE.APACHE version is less than B.2.2.15.05 AND hpuxwsAPACHE.APACHE2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.AUTH_LDAP version is less than B.2.2.15.05 AND hpuxwsAPACHE.AUTH_LDAP2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_JK version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_JK2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_PERL version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_PERL2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.PHP version is less than B.2.2.15.05 AND hpuxwsAPACHE.WEBPROXY version is less than B.2.2.15.05 AND hpuxwsAPACHE.PHP2 version is less than B.2.2.15.05 OR Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.11 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.30.04 OR Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.23 AND filesets tests hpuxwsAPCH32.APACHE version is less than B.2.0.64.01 AND hpuxwsAPCH32.APACHE2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.AUTH_LDAP version is less than B.2.0.64.01 AND hpuxwsAPCH32.AUTH_LDAP2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_JK version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_JK2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_PERL version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_PERL2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.PHP version is less than B.2.0.64.01 AND hpuxwsAPCH32.WEBPROXY version is less than B.2.0.64.01 AND hpuxwsAPCH32.PHP2 version is less than B.2.0.64.01 OR Criteria meets HP Security Bulletin HPSBUX02645 HP-UX B.11.31 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.30.04 OR Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.23 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.30.04 OR Criteria meets HP Security Bulletin HPSBUX02645 HP-UX B.11.31 AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.30.04 OR Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.11 AND filesets tests hpuxwsAPACHE.APACHE version is less than B.2.0.64.01 AND hpuxwsAPACHE.APACHE2 version is less than B.2.0.64.01 AND hpuxwsAPACHE.AUTH_LDAP version is less than B.2.0.64.01 AND hpuxwsAPACHE.AUTH_LDAP2 version is less than B.2.0.64.01 AND hpuxwsAPACHE.MOD_JK version is less than B.2.0.64.01 AND hpuxwsAPACHE.MOD_JK2 version is less than B.2.0.64.01 AND hpuxwsAPACHE.MOD_PERL version is less than B.2.0.64.01 AND hpuxwsAPACHE.MOD_PERL2 version is less than B.2.0.64.01 AND hpuxwsAPACHE.WEBPROXY version is less than B.2.0.64.01 AND hpuxwsAPACHE.PHP version is less than B.2.0.64.01 AND hpuxwsAPACHE.PHP2 version is less than B.2.0.64.01 OR Criteria meets HP Security Bulletin HPSBUX02645 HP Release B.11.23 AND filesets tests hpuxwsAPACHE.APACHE version is less than B.2.2.15.05 AND hpuxwsAPACHE.APACHE2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.AUTH_LDAP version is less than B.2.2.15.05 AND hpuxwsAPACHE.AUTH_LDAP2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_JK version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_JK2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_PERL version is less than B.2.2.15.05 AND hpuxwsAPACHE.MOD_PERL2 version is less than B.2.2.15.05 AND hpuxwsAPACHE.WEBPROXY version is less than B.2.2.15.05 AND hpuxwsAPACHE.PHP version is less than B.2.2.15.05 AND hpuxwsAPACHE.PHP2 version is less than B.2.2.15.05 OR Criteria meets HP Security Bulletin HPSBUX02645 HP-UX B.11.31 AND filesets tests hpuxwsAPCH32.APACHE version is less than B.2.0.64.01 AND hpuxwsAPCH32.APACHE2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.AUTH_LDAP version is less than B.2.0.64.01 AND hpuxwsAPCH32.AUTH_LDAP2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_JK version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_JK2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_PERL version is less than B.2.0.64.01 AND hpuxwsAPCH32.MOD_PERL2 version is less than B.2.0.64.01 AND hpuxwsAPCH32.WEBPROXY version is less than B.2.0.64.01 AND hpuxwsAPCH32.PHP version is less than B.2.0.64.01 AND hpuxwsAPCH32.PHP2 version is less than B.2.0.64.01

Definition Id: oval:org.mitre.oval:def:12662

Oval ID:	oval:org.mitre.oval:def:12662
Title:	HP-UX Running Java, Remote Execution of Arbitrary Code, Disclosure of Information, and Other Vulnerabilities
Description:	The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-4476	Version:	4
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
Criteria meets HP Security Bulletin HPSBUX02685 platforms HP-UX B.11.31 AND HP Release B.11.11 AND HP Release B.11.23 AND filesets tests Jdk15.JDK15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-COM version is less than 1.5.0.22.00 AND Jdk15.JDK15-IPF64 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20 version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-PA20W-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32 version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF32-HS version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64 version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20W version is less than 1.5.0.22.00 AND Jre15.JRE15-IPF64-HS version is less than 1.5.0.22.00 AND Jdk15.JDK15-PA20 version is less than 1.5.0.22.00 AND Jdk15.JDK15-COM version is less than 1.5.0.22.00 OR Criteria meets HP Security Bulletin HPSBUX02685 platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Jdk60.JDK60-PA20 version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-COM version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF32-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64 version is less than 1.6.0.10.00 AND Jre60.JRE60-IPF64-HS version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20 version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-PA20W version is less than 1.6.0.10.00 AND Jre60.JRE60-PA20W-HS version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF32 version is less than 1.6.0.10.00 AND Jdk60.JDK60-IPF64 version is less than 1.6.0.10.00 AND Jdk60.JDK60-COM version is less than 1.6.0.10.00

CPE : Common Platform Enumeration

Type	Description	Count
Application	Sun Jdk cpe:/a:sun:jdk:1.6.0 cpe:/a:sun:jdk:1.6.0:update_23 cpe:/a:sun:jdk:1.6.0:update_19 cpe:/a:sun:jdk:1.6.0:update_14 cpe:/a:sun:jdk:1.6.0:update_16 cpe:/a:sun:jdk:1.6.0:update2 cpe:/a:sun:jdk:1.6.0:update1 cpe:/a:sun:jdk:1.6.0:update1_b06 cpe:/a:sun:jdk:1.6.0:update_13 cpe:/a:sun:jdk:1.6.0:update_17 cpe:/a:sun:jdk:1.6.0:update_7 cpe:/a:sun:jdk:1.6.0:update_10 cpe:/a:sun:jdk:1.6.0:update_11 cpe:/a:sun:jdk:1.6.0:update_6 cpe:/a:sun:jdk:1.6.0:update_15 cpe:/a:sun:jdk:1.6.0:update_3 cpe:/a:sun:jdk:1.6.0:update_4 cpe:/a:sun:jdk:1.6.0:update_5 cpe:/a:sun:jdk:1.6.0:update_18 cpe:/a:sun:jdk:1.6.0:update_22 cpe:/a:sun:jdk:1.6.0:update_20 cpe:/a:sun:jdk:1.6.0:update_12 cpe:/a:sun:jdk:1.6.0:update_21 cpe:/a:sun:jdk:1.5.0:update6 cpe:/a:sun:jdk:1.5.0:update7 cpe:/a:sun:jdk:1.5.0:update5 cpe:/a:sun:jdk:1.5.0:update10 cpe:/a:sun:jdk:1.5.0:update25 cpe:/a:sun:jdk:1.5.0:update16 cpe:/a:sun:jdk:1.5.0:update3 cpe:/a:sun:jdk:1.5.0:update27 cpe:/a:sun:jdk:1.5.0:update23 cpe:/a:sun:jdk:1.5.0:update21 cpe:/a:sun:jdk:1.5.0:update17 cpe:/a:sun:jdk:1.5.0:update1 cpe:/a:sun:jdk:1.5.0:update19 cpe:/a:sun:jdk:1.5.0 cpe:/a:sun:jdk:1.5.0:update13 cpe:/a:sun:jdk:1.5.0:update8 cpe:/a:sun:jdk:1.5.0:update12 cpe:/a:sun:jdk:1.5.0:update2 cpe:/a:sun:jdk:1.5.0:update26 cpe:/a:sun:jdk:1.5.0:update9 cpe:/a:sun:jdk:1.5.0:update15 cpe:/a:sun:jdk:1.5.0:update4 cpe:/a:sun:jdk:1.5.0:update20 cpe:/a:sun:jdk:1.5.0:update22 cpe:/a:sun:jdk:1.5.0:update24 cpe:/a:sun:jdk:1.5.0:update11 cpe:/a:sun:jdk:1.5.0:update14 cpe:/a:sun:jdk:1.5.0:update18	51
Application	Sun Jre cpe:/a:sun:jre:1.6.0:update_16 cpe:/a:sun:jre:1.6.0:update_4 cpe:/a:sun:jre:1.6.0:update_18 cpe:/a:sun:jre:1.6.0:update_10 cpe:/a:sun:jre:1.6.0:update_15 cpe:/a:sun:jre:1.6.0:update_12 cpe:/a:sun:jre:1.6.0:update_20 cpe:/a:sun:jre:1.6.0:update_23 cpe:/a:sun:jre:1.6.0:update_17 cpe:/a:sun:jre:1.6.0:update_7 cpe:/a:sun:jre:1.6.0:update_14 cpe:/a:sun:jre:1.6.0 cpe:/a:sun:jre:1.6.0:update_19 cpe:/a:sun:jre:1.6.0:update_5 cpe:/a:sun:jre:1.6.0:update_11 cpe:/a:sun:jre:1.6.0:update_2 cpe:/a:sun:jre:1.6.0:update_3 cpe:/a:sun:jre:1.6.0:update_6 cpe:/a:sun:jre:1.6.0:update_13 cpe:/a:sun:jre:1.6.0:update_22 cpe:/a:sun:jre:1.6.0:update_21 cpe:/a:sun:jre:1.6.0:update_1 cpe:/a:sun:jre:1.5.0:update17 cpe:/a:sun:jre:1.5.0:update16 cpe:/a:sun:jre:1.5.0:update10 cpe:/a:sun:jre:1.5.0:update12 cpe:/a:sun:jre:1.5.0:update15 cpe:/a:sun:jre:1.5.0:update27 cpe:/a:sun:jre:1.5.0:update22 cpe:/a:sun:jre:1.5.0:update8 cpe:/a:sun:jre:1.5.0 cpe:/a:sun:jre:1.5.0:update14 cpe:/a:sun:jre:1.5.0:update13 cpe:/a:sun:jre:1.5.0:update19 cpe:/a:sun:jre:1.5.0:update6 cpe:/a:sun:jre:1.5.0:update25 cpe:/a:sun:jre:1.5.0:update2 cpe:/a:sun:jre:1.5.0:update24 cpe:/a:sun:jre:1.5.0:update5 cpe:/a:sun:jre:1.5.0:update4 cpe:/a:sun:jre:1.5.0:update3 cpe:/a:sun:jre:1.5.0:update21 cpe:/a:sun:jre:1.5.0:update9 cpe:/a:sun:jre:1.5.0:update20 cpe:/a:sun:jre:1.5.0:update1 cpe:/a:sun:jre:1.5.0:update18 cpe:/a:sun:jre:1.5.0:update23 cpe:/a:sun:jre:1.5.0:update11 cpe:/a:sun:jre:1.5.0:update26 cpe:/a:sun:jre:1.5.0:update7 cpe:/a:sun:jre:1.4.2_29 cpe:/a:sun:jre:1.4.2_28 cpe:/a:sun:jre:1.4.2_27 cpe:/a:sun:jre:1.4.2_26 cpe:/a:sun:jre:1.4.2_25 cpe:/a:sun:jre:1.4.2_24 cpe:/a:sun:jre:1.4.2_23 cpe:/a:sun:jre:1.4.2_22 cpe:/a:sun:jre:1.4.2_21 cpe:/a:sun:jre:1.4.2_20 cpe:/a:sun:jre:1.4.2_19 cpe:/a:sun:jre:1.4.2_18 cpe:/a:sun:jre:1.4.2_17 cpe:/a:sun:jre:1.4.2_16 cpe:/a:sun:jre:1.4.2_15 cpe:/a:sun:jre:1.4.2_14 cpe:/a:sun:jre:1.4.2_13 cpe:/a:sun:jre:1.4.2_12 cpe:/a:sun:jre:1.4.2_11 cpe:/a:sun:jre:1.4.2_10 cpe:/a:sun:jre:1.4.2_1 cpe:/a:sun:jre:1.4.2 cpe:/a:sun:jre:1.4.2:update2 cpe:/a:sun:jre:1.4.2:update8 cpe:/a:sun:jre:1.4.2:update6 cpe:/a:sun:jre:1.4.2:update7 cpe:/a:sun:jre:1.4.2:update4 cpe:/a:sun:jre:1.4.2:update3 cpe:/a:sun:jre:1.4.2:update1 cpe:/a:sun:jre:1.4.2:update5 cpe:/a:sun:jre:1.4.2:update9	81
Application	Sun Sdk cpe:/a:sun:sdk:1.4.2_9 cpe:/a:sun:sdk:1.4.2_8 cpe:/a:sun:sdk:1.4.2_7 cpe:/a:sun:sdk:1.4.2_6 cpe:/a:sun:sdk:1.4.2_5 cpe:/a:sun:sdk:1.4.2_4 cpe:/a:sun:sdk:1.4.2_3 cpe:/a:sun:sdk:1.4.2_29 cpe:/a:sun:sdk:1.4.2_28 cpe:/a:sun:sdk:1.4.2_27 cpe:/a:sun:sdk:1.4.2_26 cpe:/a:sun:sdk:1.4.2_25 cpe:/a:sun:sdk:1.4.2_24 cpe:/a:sun:sdk:1.4.2_23 cpe:/a:sun:sdk:1.4.2_22 cpe:/a:sun:sdk:1.4.2_21 cpe:/a:sun:sdk:1.4.2_20 cpe:/a:sun:sdk:1.4.2_19 cpe:/a:sun:sdk:1.4.2_18 cpe:/a:sun:sdk:1.4.2_17 cpe:/a:sun:sdk:1.4.2_16 cpe:/a:sun:sdk:1.4.2_15 cpe:/a:sun:sdk:1.4.2_14 cpe:/a:sun:sdk:1.4.2_13 cpe:/a:sun:sdk:1.4.2_12 cpe:/a:sun:sdk:1.4.2_11 cpe:/a:sun:sdk:1.4.2_10 cpe:/a:sun:sdk:1.4.2_1 cpe:/a:sun:sdk:1.4.2_02 cpe:/a:sun:sdk:1.4.2	30

Open Source Vulnerability Database (OSVDB)

id	Description
70965	Oracle Java SE / Java for Business Double.parseDouble Method Floating Point ...

Internal Sources (Detail)

Source	Url
AIXAPAR	http://www-01.ibm.com/support/docview.wss?uid=swg1IZ94423 http://www-01.ibm.com/support/docview.wss?uid=swg1PM31983
CONFIRM	http://blogs.oracle.com/security/2011/02/security_alert_for_cve-2010-44.html http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_50985... http://www-01.ibm.com/support/docview.wss?uid=swg21468358 http://www.ibm.com/support/docview.wss?uid=swg24029497 http://www.ibm.com/support/docview.wss?uid=swg24029498 http://www.oracle.com/technetwork/topics/security/alert-cve-2010-4476-305811.... http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html http://www.oracle.com/technetwork/topics/security/javacpufeb2011-304611.html
DEBIAN	http://www.debian.org/security/2011/dsa-2161
FEDORA	http://lists.fedoraproject.org/pipermail/package-announce/2011-February/05392... http://lists.fedoraproject.org/pipermail/package-announce/2011-February/05393...
HP	http://marc.info/?l=bugtraq&m=129960314701922&w=2 http://marc.info/?l=bugtraq&m=129960314701922&w=2 http://marc.info/?l=bugtraq&m=130514352726432&w=2 http://marc.info/?l=bugtraq&m=130514352726432&w=2 http://marc.info/?l=bugtraq&m=131041767210772&w=2 http://marc.info/?l=bugtraq&m=131041767210772&w=2 http://marc.info/?l=bugtraq&m=132215163318824&w=2 http://marc.info/?l=bugtraq&m=132215163318824&w=2 http://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02720715&... http://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02720715&...
MANDRIVA	http://www.mandriva.com/security/advisories?name=MDVSA-2011:054
MISC	http://blog.fortify.com/blog/2011/02/08/Double-Trouble http://www.exploringbinary.com/java-hangs-when-converting-2-2250738585072012e...
REDHAT	http://www.redhat.com/support/errata/RHSA-2011-0210.html http://www.redhat.com/support/errata/RHSA-2011-0211.html http://www.redhat.com/support/errata/RHSA-2011-0212.html http://www.redhat.com/support/errata/RHSA-2011-0213.html http://www.redhat.com/support/errata/RHSA-2011-0214.html http://www.redhat.com/support/errata/RHSA-2011-0282.html http://www.redhat.com/support/errata/RHSA-2011-0333.html http://www.redhat.com/support/errata/RHSA-2011-0334.html http://www.redhat.com/support/errata/RHSA-2011-0880.html
SECTRACK	http://www.securitytracker.com/id?1025062
SECUNIA	http://secunia.com/advisories/43048 http://secunia.com/advisories/43280 http://secunia.com/advisories/43295 http://secunia.com/advisories/43304 http://secunia.com/advisories/43333 http://secunia.com/advisories/43378 http://secunia.com/advisories/43400 http://secunia.com/advisories/43659 http://secunia.com/advisories/44954 http://secunia.com/advisories/45022 http://secunia.com/advisories/45555 http://secunia.com/advisories/49198
SUSE	http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00004.html http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00010.html
VUPEN	http://www.vupen.com/english/advisories/2011/0365 http://www.vupen.com/english/advisories/2011/0377 http://www.vupen.com/english/advisories/2011/0379 http://www.vupen.com/english/advisories/2011/0422 http://www.vupen.com/english/advisories/2011/0434 http://www.vupen.com/english/advisories/2011/0605

Alert History

If you want to see full details history, please login or register.

Date	Informations
2013-05-10 23:38:18	Multiple Updates
2012-11-07 05:19:55	Multiple Updates

Type	Count
Oval ID(s)	4
CPE ID(s)	162
osvdb(s)	1

Related	Severity
VMSA-2011-0013	(Critical)
USN-1079-3	(Critical)
USN-1079-2	(Critical)
USN-1079-1	(Critical)
RHSA-2011:0282	(Critical)
MDVSA-2011:054	(Critical)
HPSBUX02777 SSR...	(Critical)
HPSBUX02697 SSR...	(Critical)
HPSBMU02799 SSR...	(Critical)
HPSBMU02797 SSR...	(Critical)
GLSA-201111-02	(Critical)
HPSBUX02860 SSR...	(High)
HPSBUX02725 SSR...	(High)
HPSBOV02762 SSR...	(High)
DSA-2161	(Medium)
RHSA-2011:0336	(Medium)
RHSA-2011:0335	(Medium)
RHSA-2011:0292	(Medium)
RHSA-2011:0291	(Medium)
RHSA-2011:0290	(Medium)
RHSA-2011:0214	(Medium)
HPSBUX02645 SSR...	(Medium)
HPSBUX02642 SSR...	(Medium)
HPSBUX02641 SSR...	(Medium)
HPSBUX02633 SSR...	(Medium)
HPSBTU02684 SSR...	(Medium)
HPSBOV02634 SSR...	(Medium)
HPSBMU02690 SSR...	(Medium)
HPSBMA02642 SSR...	(Medium)