Author: jmm
Date: 2011-02-22 21:51:23 +0000 (Tue, 22 Feb 2011)
New Revision: 16233
Modified:
data/CVE/list
Log:
sun-java no-dsa since it''s non-free
Modified: data/CVE/list
==================================================================---
data/CVE/list 2011-02-22 21:47:22 UTC (rev 16232)
+++ data/CVE/list 2011-02-22 21:51:23 UTC (rev 16233)
@@ -3189,29 +3189,45 @@
CVE-2010-4476 (The Double.parseDouble method in Java Runtime Environment (JRE)
in ...)
{DSA-2161-2 DSA-2161-1}
- openjdk-6 <unfixed> (bug #612660)
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
- sun-java6 6.24-1
NOTE: Patch
http://mail.openjdk.java.net/pipermail/core-libs-dev/2011-February/005795.html
NOTE: Oracle
http://www.oracle.com/technetwork/topics/security/alert-cve-2010-4476-305811.html
NOTE: Original report
http://www.exploringbinary.com/java-hangs-when-converting-2-2250738585072012e-308/
CVE-2010-4475 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4474 (Unspecified vulnerability in the Java DB component in Oracle
Java SE ...)
- sun-java6 6.24-1
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4473 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
- openjdk-6 <undetermined>
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4472 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
- openjdk-6 <unfixed> (bug #614033)
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4471 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
- openjdk-6 <unfixed> (bug #614033)
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4470 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
- openjdk-6 <unfixed> (bug #614033)
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4469 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
- openjdk-6 <unfixed> (bug #614033)
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4468 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
TODO: check
CVE-2010-4467 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
@@ -3221,14 +3237,20 @@
CVE-2010-4465 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
- openjdk-6 <unfixed> (bug #614033)
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4464 (Unspecified vulnerability in Oracle Sun Convergence 1.0 allows
remote ...)
NOT-FOR-US: Oracle Convergence
CVE-2010-4463 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
- openjdk-6 <unfixed>
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4462 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
- openjdk-6 <unfixed>
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4461 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
NOT-FOR-US: PeopleSoft
CVE-2010-4460 (Unspecified vulnerability in Oracle Solaris 10 allows local
users to ...)
@@ -3246,22 +3268,34 @@
CVE-2010-4454 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
- openjdk-6 <undetermined>
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4453 (Unspecified vulnerability in the Oracle WebLogic Server
component in ...)
NOT-FOR-US: Oracle WebLogic
CVE-2010-4452 (Unspecified vulnerability in the Deployment component in Java
Runtime ...)
- sun-java6 6.24-1
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4451 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4450 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
- openjdk-6 <unfixed> (bug #614033)
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4449 (Unspecified vulnerability in the Audit Vault component in Oracle
Audit ...)
NOT-FOR-US: Oracle Audit
CVE-2010-4448 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
- openjdk-6 <unfixed> (bug #614033)
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4447 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4446 (Unspecified vulnerability in Oracle Solaris 11 Express allows
local ...)
NOT-FOR-US: Solaris
CVE-2010-4445 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
@@ -3312,6 +3346,8 @@
NOT-FOR-US: Oracle Database
CVE-2010-4422 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
- sun-java6 6.24-1
+ [lenny] - sun-java6 <no-dsa> (non-free not supported)
+ [squeeze] - sun-java6 <no-dsa> (non-free not supported)
CVE-2010-4421 (Unspecified vulnerability in the Database Vault component in
Oracle ...)
NOT-FOR-US: Oracle Database
CVE-2010-4420 (Unspecified vulnerability in the Database Vault component in
Oracle ...)