- --------------------------------------------------------------------------
Debian-Edu/Skolelinux Security Advisory DESA 2004-011
http://www.skolelinux.org/security/                      Finn-Arne Johansen
July 16, 2004                  debian-edu-security@lists.alioth.debian.org
- --------------------------------------------------------------------------

Package             : j2re1.4
Vulnerability       : DoS
Problem-Type        : Yes
Need reboot         : no
Debian-Edu-specific : no
CVE ID              : 
DSA ID              : 

A vulnerability were discovered in j2re1.4. 

This issue may be exploited by an attacker to cause a vulnerable application,
as well as all processes spawned from the application, to crash, denying 
service to legitimate users. Due to the scope of the crash, data loss may 
occur.

New packages are availible from http://ftp.skolelinux.no/skolelinux/

We recommend that you upgrade your j2re1.4 package to
1.4.2_05-0.skolelinux.1

Upgrade Instructions
- --------------------

Make sure 'deb http://ftp.skolelinux.no/skolelinux woody local' is 
present in your /etc/apt/sources.list and run 'apt-get update' to
update your package lists.

  apt-get install j2re1.4

- --------------------------------------------------------------------------
Mailing list: bruker@skolelinux.no, debian-edu@lists.debian.org,
              linuxiskolen@skolelinux.no, user@skolelinux.de
Package info: `apt-cache show <pkg>'