Scientific Linux Security Update : java-1.6.0-openjdk on SL6.x i386/x86_64
Medium Nessus Plugin ID 60953
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA denial of service flaw was found in the way certain strings were converted to Double objects. A remote attacker could use this flaw to cause Java-based applications to hang, for instance if they parse Double values in a specially crafted HTTP request. (CVE-2010-4476)
All running instances of OpenJDK Java must be restarted for the update to take effect.
SolutionUpdate the affected packages.