Your message dated Tue, 17 Jul 2007 18:14:00 +0200
with message-id <[EMAIL PROTECTED]>
and subject line sun-java5-jdk: Integer overflow in ICC profile parser allows
execution of arbitrary code
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: sun-java5-jdk
Version: 1.5.0-10-3
Severity: grave
Tags: security
Justification: user security hole
Integer overflow in the embedded ICC profile image parser in Sun Java
Development Kit (JDK) before 1.5.0_11-b03, and 1.6.x before
1.6.0_01-b06, allows remote attackers to execute arbitrary code or cause
a denial of service (JVM crash) via a crafted JPEG or BMP file.
CVE-2007-2788
-- System Information:
Debian Release: 4.0
APT prefers stable
APT policy: (540, 'stable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-4-686
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Versions of packages sun-java5-jre depends on:
ii debconf [debconf-2.0] 1.5.11 Debian configuration management sy
ii java-common 0.25 Base of all Java packages
ii locales 2.3.6.ds1-13 GNU C Library: National Language (
ii sun-java5-bin 1.5.0-10-3 Sun Java(TM) Runtime Environment (
Versions of packages sun-java5-jre recommends:
pn gsfonts-x11 <none> (no description available)
ii java-common 0.25 Base of all Java packages
-- debconf information:
* shared/accepted-sun-dlj-v1-1: true
sun-java5-jre/jcepolicy:
sun-java5-jre/stopthread: true
shared/error-sun-dlj-v1-1:
* shared/present-sun-dlj-v1-1:
--- End Message ---
--- Begin Message ---
Version: 1.5.0-12-1
Fixed in 1.5.0-12-1.
--- End Message ---
