CVE-2006-2426

Published: 17 May 2006

Sun Java Runtime Environment (JRE) 1.5.0_6 and earlier, JDK 1.5.0_6 and earlier, and SDK 1.5.0_6 and earlier allows remote attackers to cause a denial of service (disk consumption) by using the Font.createFont function to create temporary files of arbitrary size in the %temp% directory.

Priority

Status

Package	Release	Status
openjdk-6 Launchpad, Ubuntu, Debian	dapper	Does not exist
	gutsy	Does not exist
	hardy	Released (6b18-1.8.2-4ubuntu1~8.04.1)
	intrepid	Released (6b12-0ubuntu6.4)
	jaunty	Not vulnerable
	karmic	Not vulnerable
	lucid	Not vulnerable
	maverick	Not vulnerable
	upstream	Needs triage
sun-java5 Launchpad, Ubuntu, Debian	dapper	Ignored (end of life)
	edgy	Ignored (end of life, was needed)
	feisty	Released (1.5.0-11-1ubuntu2)
	gutsy	Released (1.5.0-11-1ubuntu2)
	hardy	Released (1.5.0-11-1ubuntu2)
	intrepid	Released (1.5.0-11-1ubuntu2)
	jaunty	Released (1.5.0-11-1ubuntu2)
	karmic	Does not exist
	lucid	Does not exist
	maverick	Does not exist
	upstream	Needs triage
sun-java6 Launchpad, Ubuntu, Debian	dapper	Does not exist
	edgy	Does not exist
	feisty	Released (6-00-2ubuntu2)
	gutsy	Released (6-00-2ubuntu2)
	hardy	Released (6-00-2ubuntu2)
	intrepid	Released (6-00-2ubuntu2)
	jaunty	Released (6-00-2ubuntu2)
	karmic	Released (6-00-2ubuntu2)
	lucid	Released (6-00-2ubuntu2)
	maverick	Not vulnerable
	upstream	Needs triage

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

CVE-2006-2426

Priority

Status

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Further reading