PublicDateAtUSN: 2011-02-17
Candidate: CVE-2010-4450
PublicDate: 2011-02-17 19:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4450
 http://www.oracle.com/technetwork/topics/security/javacpufeb2011-304611.html
 https://ubuntu.com/security/notices/USN-1079-1
 https://ubuntu.com/security/notices/USN-1079-2
 https://ubuntu.com/security/notices/USN-1079-3
Description:
 Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle
 Java SE and Java for Business 6 Update 23 and earlier for Solaris and
 Linux; 5.0 Update 27 and earlier for Solaris and Linux; and 1.4.2_29 and
 earlier for Solaris and Linux allows local standalone applications to
 affect confidentiality, integrity, and availability via unknown vectors
 related to Launcher.  NOTE: the previous information was obtained from the
 February 2011 CPU.  Oracle has not commented on claims from a downstream
 vendor that this issue is an untrusted search path vulnerability involving
 an empty LD_LIBRARY_PATH environment variable.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_sun-java6:
upstream_sun-java6: released (6.24-1)
dapper_sun-java6: DNE
hardy_sun-java6: released (6.24-1build0.8.04.1)
karmic_sun-java6: released (6.24-1build0.9.10.1)
lucid_sun-java6: released (6.24-1build0.10.04.1)
maverick_sun-java6: released (6.24-1build0.10.10.1)
natty_sun-java6: released (6.24-1build0.10.10.1)
oneiric_sun-java6: not-affected (6.26-1oneiric1)
devel_sun-java6: DNE

Patches_sun-java5:
upstream_sun-java5: released (1.5.0-28)
dapper_sun-java5: ignored (end-of-life)
hardy_sun-java5: ignored (upstream sun-java5 is EoL)
karmic_sun-java5: DNE
lucid_sun-java5: DNE
maverick_sun-java5: DNE
natty_sun-java5: DNE
oneiric_sun-java5: DNE
devel_sun-java5: DNE

Patches_openjdk-6:
upstream_openjdk-6: released (6b24)
dapper_openjdk-6: DNE
hardy_openjdk-6: released (6b27-1.12.3-0ubuntu1~08.04.1)
karmic_openjdk-6: released (6b20-1.9.7-0ubuntu1~9.10.1)
lucid_openjdk-6: released (6b20-1.9.7-0ubuntu1~10.04.1)
maverick_openjdk-6: released (6b20-1.9.7-0ubuntu1)
natty_openjdk-6: not-affected (6b22-1.10.1-0ubuntu1)
oneiric_openjdk-6: not-affected (6b22-1.10.1-0ubuntu1)
devel_openjdk-6: not-affected (6b22-1.10.1-0ubuntu1)

Patches_openjdk-6b18:
upstream_openjdk-6b18: released (6b24)
dapper_openjdk-6b18: DNE
hardy_openjdk-6b18: DNE
karmic_openjdk-6b18: released (6b18-1.8.7-0ubuntu1~9.10.1)
lucid_openjdk-6b18: released (6b18-1.8.7-0ubuntu1~10.04.2)
maverick_openjdk-6b18: released (6b18-1.8.7-0ubuntu2.1)
natty_openjdk-6b18: released (6b18-1.8.7-0ubuntu5)
oneiric_openjdk-6b18: released (6b18-1.8.7-0ubuntu5)
devel_openjdk-6b18: released (6b18-1.8.7-0ubuntu5)