The TimeZone.getTimeZone method in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, allows remote attackers to determine the existence of local files via vectors related to handling of zoneinfo (aka tz) files, aka Bug Id 6824265.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Jre | Sun | * | 1.5.0 (including) |
| Jre | Sun | * | 1.6.0 (including) |
| Jre | Sun | 1.5.0-update_1 (including) | 1.5.0-update_1 (including) |
| Jre | Sun | 1.5.0-update_11 (including) | 1.5.0-update_11 (including) |
| Jre | Sun | 1.5.0-update_12 (including) | 1.5.0-update_12 (including) |
| Jre | Sun | 1.5.0-update_13 (including) | 1.5.0-update_13 (including) |
| Jre | Sun | 1.5.0-update_14 (including) | 1.5.0-update_14 (including) |
| Jre | Sun | 1.5.0-update_15 (including) | 1.5.0-update_15 (including) |
| Jre | Sun | 1.5.0-update_16 (including) | 1.5.0-update_16 (including) |
| Jre | Sun | 1.5.0-update_17 (including) | 1.5.0-update_17 (including) |
| Jre | Sun | 1.5.0-update_18 (including) | 1.5.0-update_18 (including) |
| Jre | Sun | 1.5.0-update_19 (including) | 1.5.0-update_19 (including) |
| Jre | Sun | 1.5.0-update_2 (including) | 1.5.0-update_2 (including) |
| Jre | Sun | 1.5.0-update_20 (including) | 1.5.0-update_20 (including) |
| Jre | Sun | 1.5.0-update_3 (including) | 1.5.0-update_3 (including) |
| Jre | Sun | 1.5.0-update_4 (including) | 1.5.0-update_4 (including) |
| Jre | Sun | 1.5.0-update_5 (including) | 1.5.0-update_5 (including) |
| Jre | Sun | 1.5.0-update_6 (including) | 1.5.0-update_6 (including) |
| Jre | Sun | 1.5.0-update_7 (including) | 1.5.0-update_7 (including) |
| Jre | Sun | 1.5.0-update_8 (including) | 1.5.0-update_8 (including) |
| Jre | Sun | 1.5.0-update_9 (including) | 1.5.0-update_9 (including) |
| Jre | Sun | 1.5.0-update10 (including) | 1.5.0-update10 (including) |
| Jre | Sun | 1.6.0-update_1 (including) | 1.6.0-update_1 (including) |
| Jre | Sun | 1.6.0-update_10 (including) | 1.6.0-update_10 (including) |
| Jre | Sun | 1.6.0-update_11 (including) | 1.6.0-update_11 (including) |
| Jre | Sun | 1.6.0-update_12 (including) | 1.6.0-update_12 (including) |
| Jre | Sun | 1.6.0-update_13 (including) | 1.6.0-update_13 (including) |
| Jre | Sun | 1.6.0-update_14 (including) | 1.6.0-update_14 (including) |
| Jre | Sun | 1.6.0-update_15 (including) | 1.6.0-update_15 (including) |
| Jre | Sun | 1.6.0-update_2 (including) | 1.6.0-update_2 (including) |
| Jre | Sun | 1.6.0-update_3 (including) | 1.6.0-update_3 (including) |
| Jre | Sun | 1.6.0-update_4 (including) | 1.6.0-update_4 (including) |
| Jre | Sun | 1.6.0-update_5 (including) | 1.6.0-update_5 (including) |
| Jre | Sun | 1.6.0-update_6 (including) | 1.6.0-update_6 (including) |
| Jre | Sun | 1.6.0-update_7 (including) | 1.6.0-update_7 (including) |
| Jre | Sun | 1.6.0-update_8 (including) | 1.6.0-update_8 (including) |
| Jre | Sun | 1.6.0-update_9 (including) | 1.6.0-update_9 (including) |
| Openjdk | Sun | * | * |
| Extras for RHEL 4 | RedHat | java-1.6.0-sun-1:1.6.0.17-1jpp.1.el4 | * |
| Extras for RHEL 4 | RedHat | java-1.5.0-sun-0:1.5.0.22-1jpp.1.el4 | * |
| Red Hat Enterprise Linux 5 | RedHat | java-1.6.0-openjdk-1:1.6.0.0-1.7.b09.el5 | * |
| Red Hat Network Satellite Server v 5.1 | RedHat | java-1.5.0-sun-0:1.5.0.22-1jpp.1.el4 | * |
| Supplementary for Red Hat Enterprise Linux 5 | RedHat | java-1.6.0-sun-1:1.6.0.17-1jpp.2.el5 | * |
| Supplementary for Red Hat Enterprise Linux 5 | RedHat | java-1.5.0-sun-0:1.5.0.22-1jpp.1.el5 | * |
| Openjdk-6 | Ubuntu | hardy | * |
| Openjdk-6 | Ubuntu | intrepid | * |
| Openjdk-6 | Ubuntu | jaunty | * |
| Openjdk-6 | Ubuntu | karmic | * |
| Openjdk-6 | Ubuntu | upstream | * |
| Sun-java5 | Ubuntu | dapper | * |
| Sun-java5 | Ubuntu | intrepid | * |
| Sun-java5 | Ubuntu | jaunty | * |
| Sun-java5 | Ubuntu | upstream | * |
| Sun-java6 | Ubuntu | hardy | * |
| Sun-java6 | Ubuntu | intrepid | * |
| Sun-java6 | Ubuntu | jaunty | * |
| Sun-java6 | Ubuntu | karmic | * |
| Sun-java6 | Ubuntu | lucid | * |
| Sun-java6 | Ubuntu | upstream | * |
References
- http://java.sun.com/j2se/1.5.0/ReleaseNotes.html
- http://java.sun.com/javase/6/webnotes/6u17.html
- http://lists.apple.com/archives/security-announce/2009/Dec/msg00000.html
- http://lists.apple.com/archives/security-announce/2009/Dec/msg00001.html
- http://secunia.com/advisories/37386
- http://secunia.com/advisories/37581
- http://security.gentoo.org/glsa/glsa-200911-02.xml
- http://support.apple.com/kb/HT3969
- http://support.apple.com/kb/HT3970
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:084
- https://bugzilla.redhat.com/show_bug.cgi?id=530300
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11686
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6960
- http://java.sun.com/j2se/1.5.0/ReleaseNotes.html
- http://java.sun.com/javase/6/webnotes/6u17.html
- http://lists.apple.com/archives/security-announce/2009/Dec/msg00000.html
- http://lists.apple.com/archives/security-announce/2009/Dec/msg00001.html
- http://secunia.com/advisories/37386
- http://secunia.com/advisories/37581
- http://security.gentoo.org/glsa/glsa-200911-02.xml
- http://support.apple.com/kb/HT3969
- http://support.apple.com/kb/HT3970
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:084
- https://bugzilla.redhat.com/show_bug.cgi?id=530300
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11686
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6960