Multiple Vendor Java Virtual Machine Bytecode Verifier Vulnerability

Solution:
It should be noted that there does not yet appear to be a fix for Sun Java SDK and JRE 1.3.0_05. This record will be updated if and when the patches are available.

Compaq Insight Manager XE has been replaced by Compaq Insight Manager 7. Users should upgrade to Compaq Insight Manager 7 and then apply SP 1.

Some versions of Compaq TRU64 Unix and OpenVMS for Alpha ship with vulnerable versions of Java SDK and JRE. For details on upgrading, please visit the following website:

http://www.compaq.com/java/alpha

To fix Compaq Management Agents, it has been suggested that those affected upgrade to the version of the Java Runtime Environment recommended by Microsoft at the following address:

http://www.microsoft.com/java/vm/dl_vm40.htm

Various vendors have released the following fixes which rectify this issue.


Microsoft Virtual Machine 3802 Series

Compaq Insight Manager XE 1.0

Sun JRE (Solaris Production Release) 1.1.8 _14

Sun JRE (Windows Production Release) 1.1.8 _008

HP Java JRE/JDK for HP-UX 1.1.8

Sun JDK (Solaris Production Release) 1.1.8 _14

Sun JDK (Windows Production Release) 1.1.8 _008

Sun JRE (Solaris Reference Release) 1.1.8 _008

Sun JDK (Solaris Reference Release) 1.1.8 _008

Sun JRE (Solaris Reference Release) 1.2.2 _010

Sun JRE (Linux Production Release) 1.2.2 _011

HP Java SDK/RTE for HP-UX PA-RISC 1.2.2

Sun SDK (Windows Production Release) 1.2.2 _010

Sun JRE (Windows Production Release) 1.2.2 _010

Sun JRE (Solaris Production Release) 1.2.2 _010

Sun SDK (Linux Production Release) 1.2.2 _010

Sun SDK (Solaris Production Release) 1.2.2 _10

Sun SDK (Solaris Reference Release) 1.2.2 _010

Compaq Insight Manager XE 1.21

HP Java SDK/RTE for HP-UX PA-RISC 1.3

Sun SDK (Linux Production Release) 1.3.1 _01

Sun SDK (Windows Production Release) 1.3.1 _01a

Sun SDK (Solaris Production Release) 1.3.1 _01

Sun JRE (Solaris Production Release) 1.3.1 _01

Sun JRE (Linux Production Release) 1.3.1 _01

Sun JRE (Windows Production Release) 1.3.1 _01a

Compaq Insight Manager XE 2.1

Compaq Insight Manager XE 2.1 b

Compaq Insight Manager XE 2.1 c

Compaq Insight Manager XE 2.2

Compaq Tru64 4.0 g

Compaq Tru64 4.0 f

Compaq Tru64 5.0 a

Compaq Tru64 5.1

Compaq Insight Manager 7.0

Compaq OpenVMS 7.2 -2 Alpha

Compaq OpenVMS 7.2 -1H2 Alpha

Compaq OpenVMS 7.2 Alpha

Compaq OpenVMS 7.2 -1H1 Alpha

Compaq OpenVMS 7.2.1 Alpha

Compaq OpenVMS 7.3 Alpha
 

Privacy Statement
Copyright 2010, SecurityFocus