Launchpad.net

CVE 2007-2788

Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit (JDK) before 1.5.0_11-b03 and 1.6.x before 1.6.0_01-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.2_14 and earlier, and SDK and JRE 1.3.1_20 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service (JVM crash) via a crafted JPEG or BMP file that triggers a buffer overflow.

Related bugs and status

CVE-2007-2788 (Candidate) is related to these bugs:

Bug #126059: Java has Huge Security Vulnerability, should be updated to 6update2

Summary				In	Importance	Status
	126059	Java has Huge Security Vulnerability, should be updated to 6update2		sun-java6 (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://scary.beasts.or...
BID: 24004
SECUNIA: 25295
GENTOO: GLSA-200705-23
SECUNIA: 25474
GENTOO: GLSA-200706-08
SECUNIA: 25832
CONFIRM: http://support.novell....
CONFIRM: http://support.novell....
SECUNIA: 26049
SUSE: SUSE-SA:2007:045
SECUNIA: 26119
REDHAT: RHSA-2007:0829
SECUNIA: 26369
GENTOO: GLSA-200709-15
SECUNIA: 26933
REDHAT: RHSA-2007:0956
SECUNIA: 27203
SUSE: SUSE-SA:2007:056
SECUNIA: 27266
SECUNIA: 26645
REDHAT: RHSA-2007:1086
SECUNIA: 28056
MISC: http://docs.info.apple...
APPLE: APPLE-SA-2007-12-14
BEA: BEA07-177.00
REDHAT: RHSA-2007:0817
SUNALERT: 102934
CERT-VN: VU#138545
VIM: 20070703 Sun JDK Confu...
VIM: 20070704 [theall at te...
VIM: 20070711 Sun JDK Confu...
VIM: 20071218 Sun JDK Confu...
BID: 24267
SECTRACK: 1018182
SECUNIA: 26311
SECUNIA: 26631
SECUNIA: 28115
MLIST: [Security-announce] 20...
SECUNIA: 28365
REDHAT: RHSA-2008:0100
SUNALERT: 200856
SECUNIA: 29340
GENTOO: GLSA-200804-20
SECUNIA: 29858
GENTOO: GLSA-200804-28
REDHAT: RHSA-2008:0261
GENTOO: GLSA-200806-11
REDHAT: RHSA-2008:0133
SECUNIA: 30780
SECUNIA: 30805
VUPEN: ADV-2007-1836
VUPEN: ADV-2007-3009
VUPEN: ADV-2007-4224
VUPEN: ADV-2008-0065
XF: sunjava-iccprofile-ove...
XF: sun-java-image-bo(34652)
OVAL: oval:org.mitre.oval:de...