Ubuntu
sun-java6 package

sun-java6 browser plugin forces stack to be executable

Bug #535247 reported by Kees Cook
264
This bug affects 2 people
Affects Status Importance Assigned to Milestone
sun-java6 (Ubuntu)
Fix Released
High
Unassigned

Bug Description

When the sun-java6 browser plugin executes an applet, it needlessly forces the stack to become executable:

[pid 3367] mprotect(0x7fff59986000, 4096, PROT_READ|PROT_WRITE|PROT_EXEC|PROT_GROWSDOWN) = 0

This should not be done, and poses a security risk. For comparison, openjdk-6's browser plugin does not do this.

Kees Cook (kees)
security vulnerability: no → yes
Changed in sun-java6 (Ubuntu):
status: New → Confirmed
importance: Undecided → High
Jeremy Foshee (jeremyfoshee)
tags: added: kernel-series-unknown
Jeremy Foshee (jeremyfoshee)
tags: removed: kernel-series-unknown
tekla inndustry (teklaind)
Changed in sun-java6 (Ubuntu):
status: Confirmed → Fix Committed
status: Fix Committed → Fix Released
status: Fix Released → Fix Committed
Matthias Klose (doko)
Changed in sun-java6 (Ubuntu):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.