Novell Home

CVE-2009-2690

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2009-2690 at MITRE

Description

The encoder in Sun Java SE 6 before Update 15, and OpenJDK, grants read access to private variables with unspecified names, which allows context-dependent attackers to obtain sensitive information via an untrusted (1) applet or (2) application.

NVD CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:P/I:N/A:N)

Novell/SUSE information

Novell Bugzilla entry: 528268, 537969

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 10.3
  • java-1_6_0-sun >= 1.6.0.u15-0.1
  • java-1_6_0-sun-alsa >= 1.6.0.u15-0.1
  • java-1_6_0-sun-debuginfo >= 1.6.0.u15-0.1
  • java-1_6_0-sun-demo >= 1.6.0.u15-0.1
  • java-1_6_0-sun-devel >= 1.6.0.u15-0.1
  • java-1_6_0-sun-jdbc >= 1.6.0.u15-0.1
  • java-1_6_0-sun-plugin >= 1.6.0.u15-0.1
  • java-1_6_0-sun-src >= 1.6.0.u15-0.1

© 2012 Novell