javaws_change_java_policy.diff | (download) |
launcher/javaws.in |
4 4 + 0 - 0 !
1 file changed, 4 insertions(+) |
prepend -djava.security.manager -djava.security.policy=
/etc/icedtea-web/javaws.policy to allow specific java security policy
for Java WebStart.
.
The specified policy file will be loaded in *addition* to all the policy
files that are specified in JVM security properties file:
/etc/java-6-openjdk/security/java.policy
|
CVE 2013 4349.diff | (download) |
plugin/icedteanp/IcedTeaScriptablePluginObject.cc |
18 3 + 15 - 0 !
1 file changed, 3 insertions(+), 15 deletions(-) |
fix heap-buffer-overflow
CVE-2013-4349: Fix IcedTeaScriptableJavaObject::invoke off-by-one
heap-based buffer overflow after triggering event attached to applet,
possibly allowing arbitrary code execution.
.
This corresponds to CVE-2012-4540 which was not fixed in 1.4 branch.
.
Removed unnecessary heap allocations.
|