icedtea-web: security update
This update of icedtea/icedtea-web fixes two issues:
- CVE-2011-2513: CVSS v2 Base Score: 4.3: An information
leak allows unsigned Web Start applications to determine
the path to the cache directory used to store downloaded
class and jar files.
- CVE-2011-2514: CVSS v2 Base Score: 5.1 An unsigned Web
Start application could manipulate content of the
security warning dialog message to show different file
name in prompts.
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 4910
Fixed bugs
bnc#704309
VUL-0: icedtea/icedtea-web two issues
CVE#CVE-2011-2513
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE#CVE-2011-2514
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
