CVE-2008-5346

Upstream information

CVE-2008-5346 at MITRE

Description

Unspecified vulnerability in Java Runtime Environment (JRE) for Sun JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.2_18 and earlier; and SDK and JRE 1.3.1_23 or earlier allows untrusted applets and applications to read arbitrary memory via a crafted ZIP file.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
	National Vulnerability Database
Base Score	7.1
Vector	AV:N/AC:M/Au:N/C:C/I:N/A:N
Access Vector	Network
Access Complexity	Medium
Authentication	None
Confidentiality Impact	Complete
Integrity Impact	None
Availability Impact	None

SUSE Bugzilla entries: 456770 [RESOLVED / FIXED], 465624 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SA:2009:001 SUSE-SA:2009:007 SUSE-SA:2009:018 SUSE-SR:2009:010

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server for SAP Applications 11	`java-1_4_2-ibm >= 1.4.2_sr13-0.1.1` `java-1_4_2-ibm-jdbc >= 1.4.2_sr13-0.1.1` `java-1_4_2-ibm-plugin >= 1.4.2_sr13-0.1.1`	Patchnames: slessp0-java-1_4_2-ibm

SUSE Timeline for this CVE

CVE page created: Fri Jun 28 06:35:21 2013
CVE page last modified: Thu Dec 7 12:36:05 2023

CVE-2008-5346

Common Vulnerabilities and Exposures

Upstream information

Description

SUSE information

SUSE Security Advisories:

List of released packages

SUSE Timeline for this CVE

Business-Critical Linux

Enterprise Container Management

Edge

Solutions

Industries

Support

Services

Resources

Partners

Communities

About