CVE-2012-0497

Priority
Description
Unspecified vulnerability in the Java Runtime Environment (JRE) component
in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier,
allows remote attackers to affect confidentiality, integrity, and
availability via unknown vectors related to 2D.
Notes
 mdeslaur> in natty+, NetX and the plugin moved to the icedtea-web package
 sbeattie> red hat description:
  It was discovered that Java2D did not properly check
  graphics rendering objects before passing them to the native
  renderer. Malicious input, or an untrusted Java application or
  applet could use this flaw to crash the Java Virtual Machine (JVM),
  or bypass Java sandbox restrictions.
Assigned-to
sbeattie
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-03-19 12:02:48 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)