Title: IcedTeaWeb: Multiple vulnerabilities ([glsa=202107-51]GLSA 202107-51[/glsa])
Severity: normal
Exploitable: remote
Date: 2021-07-23
Bug(s): #711392
ID: 202107-51
Synopsis
Multiple vulnerabilities have been found in IcedTeaWeb, the worst
of which could result in the arbitrary execution of code.
Background
FOSS Java browser plugin and Web Start implementation.
Affected Packages
Package: dev-java/icedtea-web
Vulnerable: < 1.8.4-r1
Unaffected: >= 1.8.4-r1
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in IcedTeaWeb. Please
review the CVE identifiers referenced below for details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
All IcedTeaWeb users should upgrade to the latest version:
Code: Select all
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-java/icedtea-web-1.8.4-r1"
References
CVE-2019-10181
CVE-2019-10185