Integer Overflow in PulseAudio Affects OpenJDK by Red Hat
CVE-2009-0794

Currently unrated

Key Information:

Vendor: Oracle
Status: Openjdk
Vendor: CVE Published:; 13 April 2009

Summary

The vulnerability involves an integer overflow in the PulseAudioTargetDataLine class within Pulse-Java, which is utilized by OpenJDK. This flaw can be exploited by remote attackers who craft specific Pulse Audio source data lines, potentially leading to a denial of service through applet crashes.

References

http://www.mandriva.com/security/advisories?name=MDVSA-20...

vendor-advisoryx_refsource_MANDRIVA

http://secunia.com/advisories/34623

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/50383

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Apr 13, 2009
Vulnerability Reserved
Mar 4, 2009