CVE-2009-2690 at MITRE
Description
The encoder in Sun Java SE 6 before Update 15, and OpenJDK, grants read access to private variables with unspecified names, which allows context-dependent attackers to obtain sensitive information via an untrusted (1) applet or (2) application.
Novell Bugzilla entry:
528268,
537969
SUSE Security Advisories:
List of released packages
| Product(s) | Fixed package version(s) | References |
| openSUSE 11.0 | java-1_6_0-openjdk-debuginfo >= 1.6_b16-0.1 java-1_6_0-openjdk-debugsource >= 1.6_b16-0.1
| SAT Patch Nr: 1330 |
| openSUSE 11.0 | java-1_6_0-openjdk >= 1.6_b16-0.1 java-1_6_0-openjdk-demo >= 1.6_b16-0.1 java-1_6_0-openjdk-devel >= 1.6_b16-0.1 java-1_6_0-openjdk-javadoc >= 1.6_b16-0.1 java-1_6_0-openjdk-plugin >= 1.6_b16-0.1 java-1_6_0-openjdk-src >= 1.6_b16-0.1
| SAT Patch Nr: 1330 |
| openSUSE 11.1 | java-1_6_0-openjdk-debuginfo >= 1.6_b16-0.1.3 java-1_6_0-openjdk-debugsource >= 1.6_b16-0.1.3
| SAT Patch Nr: 1330 |
| openSUSE 11.1 | java-1_6_0-openjdk >= 1.6_b16-0.1.3 java-1_6_0-openjdk-demo >= 1.6_b16-0.1.3 java-1_6_0-openjdk-devel >= 1.6_b16-0.1.3 java-1_6_0-openjdk-javadoc >= 1.6_b16-0.1.3 java-1_6_0-openjdk-plugin >= 1.6_b16-0.1.3 java-1_6_0-openjdk-src >= 1.6_b16-0.1.3
| SAT Patch Nr: 1330 |
| openSUSE 10.3 | java-1_6_0-sun >= 1.6.0.u15-0.1 java-1_6_0-sun-alsa >= 1.6.0.u15-0.1 java-1_6_0-sun-debuginfo >= 1.6.0.u15-0.1 java-1_6_0-sun-demo >= 1.6.0.u15-0.1 java-1_6_0-sun-devel >= 1.6.0.u15-0.1 java-1_6_0-sun-jdbc >= 1.6.0.u15-0.1 java-1_6_0-sun-plugin >= 1.6.0.u15-0.1 java-1_6_0-sun-src >= 1.6.0.u15-0.1
| ZYPP Patch Nr: 6395 SAT Patch Nr: 1161 |
| openSUSE 11.0 | java-1_6_0-sun >= 1.6.0.u15-0.1 java-1_6_0-sun-alsa >= 1.6.0.u15-0.1 java-1_6_0-sun-demo >= 1.6.0.u15-0.1 java-1_6_0-sun-devel >= 1.6.0.u15-0.1 java-1_6_0-sun-jdbc >= 1.6.0.u15-0.1 java-1_6_0-sun-plugin >= 1.6.0.u15-0.1 java-1_6_0-sun-src >= 1.6.0.u15-0.1
| ZYPP Patch Nr: 6395 SAT Patch Nr: 1161 |
| openSUSE 11.1 | java-1_6_0-sun >= 1.6.0.u15-0.1.1 java-1_6_0-sun-alsa >= 1.6.0.u15-0.1.1 java-1_6_0-sun-devel >= 1.6.0.u15-0.1.1 java-1_6_0-sun-jdbc >= 1.6.0.u15-0.1.1 java-1_6_0-sun-plugin >= 1.6.0.u15-0.1.1 java-1_6_0-sun-src >= 1.6.0.u15-0.1.1
| ZYPP Patch Nr: 6395 SAT Patch Nr: 1161 |
| SLES 11 DEBUGINFO | java-1_6_0-sun-debuginfo >= 1.6.0.u15-0.1.1
| sle11-debuginfo. x86 sle11-debuginfo. x86-64 sle11-debuginfo. x86-64 sle11-debuginfo. x86 SAT Patch Nr: 1163 |
| SLED 11 | java-1_6_0-sun >= 1.6.0.u15-0.1.1 java-1_6_0-sun-alsa >= 1.6.0.u15-0.1.1 java-1_6_0-sun-demo >= 1.6.0.u15-0.1.1 java-1_6_0-sun-jdbc >= 1.6.0.u15-0.1.1 java-1_6_0-sun-plugin >= 1.6.0.u15-0.1.1 java-1_6_0-sun-src >= 1.6.0.u15-0.1.1
| sle11-debuginfo. x86 sle11-debuginfo. x86-64 sle11-debuginfo. x86-64 sle11-debuginfo. x86 SAT Patch Nr: 1163 |