Ubuntu

“icedtea-web” 1.2-2ubuntu0.10.04.2 source package in The Lucid Lynx

Publishing history

1.2-2ubuntu0.10.04.2
SUPERSEDED: Lucid pocket Updates in component main and section java
  • Removed from disk on 2012-11-09.
  • Removal requested on 2012-11-08.
  • Superseded on 2012-11-07 by icedtea-web - 1.2-2ubuntu0.10.04.3
  • Published on 2012-07-31
  • Copied from ubuntu lucid in Private PPA for Ubuntu Security Team
1.2-2ubuntu0.10.04.2
SUPERSEDED: Lucid pocket Security in component main and section java
  • Removed from disk on 2012-11-09.
  • Removal requested on 2012-11-08.
  • Superseded on 2012-11-07 by icedtea-web - 1.2-2ubuntu0.10.04.3
  • Published on 2012-07-31
  • Copied from ubuntu lucid in Private PPA for Ubuntu Security Team

Builds

Changelog

icedtea-web (1.2-2ubuntu0.10.04.2) lucid-security; urgency=low

  * SECURITY UPDATE: uninitialized pointer use flaw
    - debian/patches/icedtea-web-CVE-2012-3422.patch: check for empty
      instance_to_id_map hash and return error if so.
    - CVE-2012-3422
  * SECURITY UPDATE: incorrect handling of non NULL terminated strings
    - debian/patches/icedtea-web-CVE-2012-3423.patch: ensure NPVariant
      NPStrings are NULL terminated.
    - CVE-2012-3423
 -- Steve Beattie <email address hidden>   Sat, 28 Jul 2012 19:59:47 -0700