CVE-2006-2426

Publication date 17 May 2006

Last updated 24 July 2024

Ubuntu priority

Low

Why this priority?

Sun Java Runtime Environment (JRE) 1.5.0_6 and earlier, JDK 1.5.0_6 and earlier, and SDK 1.5.0_6 and earlier allows remote attackers to cause a denial of service (disk consumption) by using the Font.createFont function to create temporary files of arbitrary size in the %temp% directory.

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
openjdk-6 10.10 maverick
Not affected
10.04 LTS lucid
Not affected
9.10 karmic
Not affected
9.04 jaunty
Not affected
8.10 intrepid
Fixed 6b12-0ubuntu6.4
8.04 LTS hardy
Fixed 6b18-1.8.2-4ubuntu1~8.04.1
7.10 gutsy Not in release
6.06 LTS dapper Not in release
sun-java5 10.10 maverick Not in release
10.04 LTS lucid Not in release
9.10 karmic Not in release
9.04 jaunty
Fixed 1.5.0-11-1ubuntu2
8.10 intrepid
Fixed 1.5.0-11-1ubuntu2
8.04 LTS hardy
Fixed 1.5.0-11-1ubuntu2
7.10 gutsy
Fixed 1.5.0-11-1ubuntu2
7.04 feisty
Fixed 1.5.0-11-1ubuntu2
6.10 edgy Ignored end of life, was needed
6.06 LTS dapper Ignored end of life
sun-java6 10.10 maverick
Not affected
10.04 LTS lucid
Fixed 6-00-2ubuntu2
9.10 karmic
Fixed 6-00-2ubuntu2
9.04 jaunty
Fixed 6-00-2ubuntu2
8.10 intrepid
Fixed 6-00-2ubuntu2
8.04 LTS hardy
Fixed 6-00-2ubuntu2
7.10 gutsy
Fixed 6-00-2ubuntu2
7.04 feisty
Fixed 6-00-2ubuntu2
6.10 edgy Not in release
6.06 LTS dapper Not in release

References

Related Ubuntu Security Notices (USN)

    • USN-748-1
    • OpenJDK vulnerabilities
    • 26 March 2009

Other references