jdk -- jar directory traversal vulnerability (CVE-2005-1080).

David Robillard david.robillard at gmail.com
Tue Sep 12 12:25:13 PDT 2006


Hi everyone,

Are there any workaround or a patch for this security problem?

FreeBSD Foundation's Java JDK and JRE 5.0 Update 7 binaries for
FreeBSD 6.1/i386:

Affected package: diablo-jdk-freebsd6.i386.1.5.0.07.00
Type of problem: jdk -- jar directory traversal vulnerability.
Reference: <http://www.FreeBSD.org/ports/portaudit/18e5428f-ae7c-11d9-837d-000e0c2e438a.html>

Many thanks,

David
-- 
David Robillard
UNIX systems administrator & Oracle DBA
CISSP, RHCE & Sun Certified Security Administrator
Montreal: +1 514 966 0122


More information about the freebsd-questions mailing list