Overview Details

File _patchinfo of Package patchinfo

<patchinfo incident="icedtea-web">
  <packager>lijews</packager>
  <issue tracker="cve" id="CVE-2013-1926"></issue>
  <issue tracker="cve" id="CVE-2013-1927"></issue>
  <issue tracker="bnc" id="815596">VUL-0: icedtea-web: CVE-2013-1926, CVE-2013-1927: bypass same origin policy</issue>
  <category>security</category>
  <rating>low</rating>
  <summary>update for icedtea-web</summary>
  <description>- update to 1.3.2 (bnc#815596) 
- Security Updates
  * CVE-2013-1927, RH884705: fixed gifar vulnerability
  * CVE-2013-1926, RH916774: Class-loader incorrectly shared for applets with same relative-path.
- Common
  * Added new option in itw-settings which allows users to set JVM arguments
    when plugin is initialized.
- NetX
  * PR580: http://www.horaoficial.cl/ loads improperly
- Plugin
  * PR1260: IcedTea-Web should not rely on GTK
   obsoletes icedtea-web-remove-gtk-dep.patch
  * PR1157: Applets can hang browser after fatal exception</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places