thr3ads.net - Secure testing team - [Secure-testing-team] CVE-2007-0243

If this information is useful, please help other people find it:
Share via:

Alex de Oliveira Silva

2007-Jan-19 13:03 UTC

[Secure-testing-team] CVE-2007-0243 - sun-java5

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Only versions prior of Update 9 is vulnerable in sun-java5.
I changed the CVE-2007-0243 to "+    - sun-java5
<not-affected>".
Someone have little of time to explain why this CVE it was changed to
"check" again?
 

regards,
- --
   .''''`.  
  : :'' :    Alex de Oliveira Silva | enerv
  `. `''     www.enerv.net
    `-
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFsLNWarbczl+z12gRAu5WAKCUYF28ec6pP44gXp+WonQwSlukCQCcDok8
+Y8Q8S+RT0/yweIzS93WMdc=BFmn
-----END PGP SIGNATURE-----

Djoume SALVETTI

2007-Jan-19 14:09 UTC

head link

[Secure-testing-team] CVE-2007-0243 - sun-java5

Le ven 19 jan 2007 09:02:30 GMT Alex de Oliveira Silva <enerv@host.sk> a
?crit :> Only versions prior of Update 9 is vulnerable in sun-java5.
> I changed the CVE-2007-0243 to "+    - sun-java5
<not-affected>".
> Someone have little of time to explain why this CVE it was changed to
> "check" again?
Florian Weimer did this change :

CVE-2007-0234 (Buffer overflow in Sun JDK and Java Runtime Environment (JRE) 5.0
...)
-       - sun-java5 <not-affected>
+       - sun-java5 1.5.0-10-1


As I''ve told you one private email, we used to put in our database the
version that fixed the problem, even if this version is no more in the
archive.

Regards.
-- 
Djoume SALVETTI

Secure testing team - Jan 2007 - CVE-2007-0243 - sun-java5

[Secure-testing-team] CVE-2007-0243 - sun-java5

[Secure-testing-team] CVE-2007-0243 - sun-java5