Launchpad.net

CVE 2008-3108

Buffer overflow in Sun Java Runtime Environment (JRE) in JDK and JRE 5.0 before Update 10, SDK and JRE 1.4.x before 1.4.2_18, and SDK and JRE 1.3.x before 1.3.1_23 allows context-dependent attackers to gain privileges via unspecified vectors related to font processing.

Related bugs and status

CVE-2008-3108 (Candidate) is related to these bugs:

Bug #255011: sru request for sun-java5

		In	Importance	Status
255011	sru request for sun-java5	sun-java5 (Ubuntu)	Undecided	Invalid
255011	sru request for sun-java5	sun-java5 (Ubuntu Dapper)	Undecided	Fix Released
255011	sru request for sun-java5	sun-java5 (Ubuntu Hardy)	Undecided	Fix Released
255011	sru request for sun-java5	sun-java5 (Ubuntu Intrepid)	Undecided	Won't Fix

See the

CVE page on Mitre.org for more details.

References

SUNALERT: 238666
BID: 30147
SECUNIA: 31010
CERT: TA08-193A
REDHAT: RHSA-2008:0790
SUSE: SUSE-SA:2008:042
SUSE: SUSE-SA:2008:043
SECUNIA: 31320
SECUNIA: 31497
SECUNIA: 31600
CONFIRM: http://support.apple.c...
CONFIRM: http://support.apple.c...
APPLE: APPLE-SA-2008-09-24
SUSE: SUSE-SA:2008:045
SECUNIA: 32018
CONFIRM: http://www.vmware.com/...
SECUNIA: 32180
SECUNIA: 32179
SECTRACK: 1020461
REDHAT: RHSA-2008:1043
REDHAT: RHSA-2008:1044
SECUNIA: 33236
SECUNIA: 33237
CONFIRM: http://support.avaya.c...
CONFIRM: http://support.avaya.c...
GENTOO: GLSA-200911-02
SECUNIA: 37386
VUPEN: ADV-2008-2056
VUPEN: ADV-2008-2740
SECUNIA: 31736
BUGTRAQ: 20081004 VMSA-2008-001...
CONFIRM: http://support.nortel....
CONFIRM: http://support.nortel....
XF: sun-jre-font-bo(43656)
BUGTRAQ: 20081004 VMSA-2008-001...