what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Red Hat Security Advisory 2017-2998-01 https://packetstormsecurity.com/files/144684/RHSA-2017-2998-01.txt https://packetstormsecurity.com/files/144684/RHSA-2017-2998-01.txt https://packetstormsecurity.com/files/144684/Red-Hat-Security-Advisory-2017-2998-01.html Fri, 20 Oct 2017 13:52:53 GMT Red Hat Security Advisory 2017-2998-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix: Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely bypass Java sandbox restrictions. It was discovered that the Kerberos client implementation in the Libraries component of OpenJDK used the sname field from the plain text part rather than encrypted part of the KDC reply message. A man-in-the-middle attacker could possibly use this flaw to impersonate Kerberos services to Java applications acting as Kerberos clients.

Related Files

No related files
packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close