Information Leak Vulnerability in Sun Java SE and OpenJDK
CVE-2009-3882

Currently unrated

Key Information:

Vendor: Oracle
Status: Openjdk
Vendor: CVE Published:; 9 November 2009

Summary

Multiple unspecified vulnerabilities exist in the Swing implementation of Sun Java SE 5.0 and 6, as well as OpenJDK. These vulnerabilities relate to 'information leaks in mutable variables,' potentially allowing attackers to exploit unknown remote attack vectors. Users of affected versions should update to the latest releases to mitigate risks associated with these vulnerabilities.

References

http://security.gentoo.org/glsa/glsa-200911-02.xml

vendor-advisoryx_refsource_GENTOO

https://bugzilla.redhat.com/show_bug.cgi?id=530175

x_refsource_CONFIRM

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

Timeline

Vulnerability published
Nov 9, 2009
Vulnerability Reserved
Nov 5, 2009