PublicDate: 2008-02-06 21:00:00 UTC
Candidate: CVE-2008-0628
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0628
Description:
 The XML parsing code in Sun Java Runtime Environment JDK and JRE 6 Update 3
 and earlier processes external entity references even when the "external
 general entities" property is false, which allows remote attackers to
 conduct XML external entity (XXE) attacks and cause a denial of service or
 access restricted resources.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_sun-java5:
upstream_sun-java5: not-affected
dapper_sun-java5: not-affected
edgy_sun-java5: not-affected
feisty_sun-java5: not-affected
gutsy_sun-java5: not-affected
hardy_sun-java5: not-affected
intrepid_sun-java5: not-affected
devel_sun-java5: not-affected

Patches_sun-java6:
upstream_sun-java6: needed
dapper_sun-java6: DNE
edgy_sun-java6: DNE
feisty_sun-java6: needed (reached end-of-life)
gutsy_sun-java6: needed (reached end-of-life)
hardy_sun-java6: released (6-04-1)
intrepid_sun-java6: released (6-04-1)
devel_sun-java6: released (6-04-1)