CVE-2006-6731

Table of Contents

Impact:
Critical
Public Date:
2007-01-04
Bugzilla:
1618250: CVE-2006-6731 security flaw

The MITRE CVE dictionary describes this issue as:

Multiple buffer overflows in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and earlier, Java System Development Kit (SDK) and JRE 1.4.2_12 and earlier 1.4.x versions, and SDK and JRE 1.3.1_18 and earlier allow attackers to develop Java applets that read, write, or execute local files, possibly related to (1) integer overflows in the Java_sun_awt_image_ImagingLib_convolveBI, awt_parseRaster, and awt_parseColorModel functions; (2) a stack overflow in the Java_sun_awt_image_ImagingLib_lookupByteRaster function; and (3) improper handling of certain negative values in the Java_sun_font_SunLayoutEngine_nativeLayout function. NOTE: some of these details are obtained from third party information.

Find out more about CVE-2006-6731 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux AS version 3 Extras (java-1.4.2-ibm) RHSA-2007:0062 2007-02-07
Red Hat Enterprise Linux 2.1 RHSA-2007:0072 2007-01-24
Red Hat Enterprise Linux AS version 4 Extras (java-1.5.0-ibm) RHSA-2007:0073 2007-02-09
Red Hat Enterprise Linux AS version 4 Extras (java-1.4.2-ibm) RHSA-2007:0062 2007-02-07
Last Modified

CVE description copyright © 2017, The MITRE Corporation