CVE-2008-3107

Publication date 9 July 2008

Last updated 24 July 2024


Ubuntu priority

Unspecified vulnerability in the Virtual Machine in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.2_18 allows context-dependent attackers to gain privileges via an untrusted (1) application or (2) applet, as demonstrated by an application or applet that grants itself privileges to (a) read local files, (b) write to local files, or (c) execute local programs.

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
openjdk-6 9.10 karmic
Fixed 6b11-1
9.04 jaunty
Fixed 6b11-1
8.10 intrepid
Fixed 6b11-1
8.04 LTS hardy
Fixed 6b11-2ubuntu2.1
7.10 gutsy Not in release
7.04 feisty Not in release
6.06 LTS dapper Not in release
sun-java5 9.10 karmic Not in release
9.04 jaunty
Not affected
8.10 intrepid
Not affected
8.04 LTS hardy
Fixed 1.5.0-22-0ubuntu0.8.04
7.10 gutsy Ignored end of life, was needs-triage
7.04 feisty Ignored end of life, was needs-triage
6.06 LTS dapper Ignored end of life
sun-java6 9.10 karmic
Not affected
9.04 jaunty
Not affected
8.10 intrepid
Not affected
8.04 LTS hardy
Fixed 6-17-0ubuntu1.8.04
7.10 gutsy Ignored end of life, was needs-triage
7.04 feisty Ignored end of life, was needs-triage
6.06 LTS dapper Not in release