CVE-2014-8873

Priority
Description
A .desktop file in the Debian openjdk-7 package 7u79-2.5.5-1~deb8u1
includes a MIME type registration that is added to /etc/mailcap by
mime-support, which allows remote attackers to execute arbitrary code via a
JAR file.
Notes
tyhicksUbuntu is not affected due to our policy that prohibits desktop files
from directly executing files that don't have the executable bit set
(https://wiki.ubuntu.com/SecurityTeam/Policies#Execute-Permission_Bit_Required)
Package
Upstream:needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected)
Package
Upstream:needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected)
Package
Upstream:needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected)
Package
Upstream:needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):DNE
More Information

Updated: 2020-09-10 03:13:11 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)