{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"critical"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2009-3869","title":"Title"},{"category":"description","text":"Stack-based buffer overflow in the setDiffICM function in the Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via a crafted argument, aka Bug Id 6872357.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2009-3869","url":"https://www.suse.com/security/cve/CVE-2009-3869"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 552581 for CVE-2009-3869","url":"https://bugzilla.suse.com/552581"},{"category":"external","summary":"SUSE Bug 552586 for CVE-2009-3869","url":"https://bugzilla.suse.com/552586"},{"category":"external","summary":"SUSE Bug 554069 for CVE-2009-3869","url":"https://bugzilla.suse.com/554069"},{"category":"external","summary":"SUSE Bug 561831 for CVE-2009-3869","url":"https://bugzilla.suse.com/561831"},{"category":"external","summary":"SUSE Bug 561859 for CVE-2009-3869","url":"https://bugzilla.suse.com/561859"},{"category":"external","summary":"SUSE Bug 566705 for CVE-2009-3869","url":"https://bugzilla.suse.com/566705"},{"category":"external","summary":"Advisory link for SUSE-SA:2009:058","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NV6LM42HO5YVHMRAT2VA5OIZYAYW6AX5/#NV6LM42HO5YVHMRAT2VA5OIZYAYW6AX5"},{"category":"external","summary":"Advisory link for SUSE-SA:2010:002","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/6ZW4QZ2RYGYI4GHHNXSAZGGFYM5QEF65/#6ZW4QZ2RYGYI4GHHNXSAZGGFYM5QEF65"},{"category":"external","summary":"Advisory link for SUSE-SA:2010:003","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/FLIPGAZLZYY44WWPPEROETFSIWDU3IK4/#FLIPGAZLZYY44WWPPEROETFSIWDU3IK4"},{"category":"external","summary":"Advisory link for SUSE-SA:2010:004","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/TSD32W5LAP3PUR6T3SSVS4Q6DX6WOHEP/#TSD32W5LAP3PUR6T3SSVS4Q6DX6WOHEP"}],"title":"SUSE CVE CVE-2009-3869","tracking":{"current_release_date":"2025-04-25T14:15:57Z","generator":{"date":"2023-02-15T06:02:01Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2009-3869","initial_release_date":"2023-02-15T06:02:01Z","revision_history":[{"date":"2023-02-15T06:02:01Z","number":"2","summary":"Current version"},{"date":"2023-12-08T05:12:33Z","number":"3","summary":"Current version"},{"date":"2023-12-09T03:35:29Z","number":"4","summary":"Current version"},{"date":"2025-03-14T08:12:12Z","number":"5","summary":"Current version"},{"date":"2025-03-16T14:46:09Z","number":"6","summary":"Current version"},{"date":"2025-04-25T14:15:57Z","number":"7","summary":"Current version"}],"status":"interim","version":"7"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise Server 11","product":{"name":"SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11","product_identification_helper":{"cpe":"cpe:/o:suse:suse_sles:11"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 11","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:11"}}},{"category":"product_version","name":"java-1_4_2-ibm-1.4.2_sr13.3-1.1.1","product":{"name":"java-1_4_2-ibm-1.4.2_sr13.3-1.1.1","product_id":"java-1_4_2-ibm-1.4.2_sr13.3-1.1.1","product_identification_helper":{"cpe":"cpe:2.3:a:ibm:java:1.4.2_sr13.3:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/java-1_4_2-ibm@1.4.2_sr13.3-1.1.1?upstream=java-1_4_2-ibm-1.4.2_sr13.3-1.1.1.src.rpm"}}},{"category":"product_version","name":"java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1","product":{"name":"java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1","product_id":"java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1","product_identification_helper":{"cpe":"cpe:2.3:a:ibm:java:1.4.2_sr13.3:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/java-1_4_2-ibm-jdbc@1.4.2_sr13.3-1.1.1?upstream=java-1_4_2-ibm-1.4.2_sr13.3-1.1.1.src.rpm"}}},{"category":"product_version","name":"java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1","product":{"name":"java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1","product_id":"java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1","product_identification_helper":{"cpe":"cpe:2.3:a:ibm:java:1.4.2_sr13.3:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/java-1_4_2-ibm-plugin@1.4.2_sr13.3-1.1.1?upstream=java-1_4_2-ibm-1.4.2_sr13.3-1.1.1.src.rpm"}}},{"category":"product_version","name":"java-1_6_0-ibm-1.6.0_sr7.0-1.1.1","product":{"name":"java-1_6_0-ibm-1.6.0_sr7.0-1.1.1","product_id":"java-1_6_0-ibm-1.6.0_sr7.0-1.1.1","product_identification_helper":{"cpe":"cpe:2.3:a:ibm:java:1.6.0_sr7.0:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/java-1_6_0-ibm@1.6.0_sr7.0-1.1.1?upstream=java-1_6_0-ibm-1.6.0_sr7.0-1.1.1.src.rpm"}}},{"category":"product_version","name":"java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1","product":{"name":"java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1","product_id":"java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1","product_identification_helper":{"cpe":"cpe:2.3:a:ibm:java:1.6.0_sr7.0:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/java-1_6_0-ibm-alsa@1.6.0_sr7.0-1.1.1?upstream=java-1_6_0-ibm-1.6.0_sr7.0-1.1.1.src.rpm"}}},{"category":"product_version","name":"java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1","product":{"name":"java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1","product_id":"java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1","product_identification_helper":{"purl":"pkg:rpm/suse/java-1_6_0-ibm-alsa-x86@1.6.0-124.7.1"}}},{"category":"product_version","name":"java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1","product":{"name":"java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1","product_id":"java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1","product_identification_helper":{"cpe":"cpe:2.3:a:ibm:java:1.6.0_sr7.0:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/java-1_6_0-ibm-fonts@1.6.0_sr7.0-1.1.1?upstream=java-1_6_0-ibm-1.6.0_sr7.0-1.1.1.src.rpm"}}},{"category":"product_version","name":"java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1","product":{"name":"java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1","product_id":"java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1","product_identification_helper":{"cpe":"cpe:2.3:a:ibm:java:1.6.0_sr7.0:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/java-1_6_0-ibm-jdbc@1.6.0_sr7.0-1.1.1?upstream=java-1_6_0-ibm-1.6.0_sr7.0-1.1.1.src.rpm"}}},{"category":"product_version","name":"java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1","product":{"name":"java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1","product_id":"java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1","product_identification_helper":{"cpe":"cpe:2.3:a:ibm:java:1.6.0_sr7.0:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/java-1_6_0-ibm-plugin@1.6.0_sr7.0-1.1.1?upstream=java-1_6_0-ibm-1.6.0_sr7.0-1.1.1.src.rpm"}}},{"category":"product_version","name":"java-1_6_0-ibm-x86-1.6.0-124.7.1","product":{"name":"java-1_6_0-ibm-x86-1.6.0-124.7.1","product_id":"java-1_6_0-ibm-x86-1.6.0-124.7.1","product_identification_helper":{"purl":"pkg:rpm/suse/java-1_6_0-ibm-x86@1.6.0-124.7.1"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"java-1_4_2-ibm-1.4.2_sr13.3-1.1.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:java-1_4_2-ibm-1.4.2_sr13.3-1.1.1"},"product_reference":"java-1_4_2-ibm-1.4.2_sr13.3-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1"},"product_reference":"java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1"},"product_reference":"java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-1.6.0_sr7.0-1.1.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:java-1_6_0-ibm-1.6.0_sr7.0-1.1.1"},"product_reference":"java-1_6_0-ibm-1.6.0_sr7.0-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1"},"product_reference":"java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1"},"product_reference":"java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1"},"product_reference":"java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1"},"product_reference":"java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1"},"product_reference":"java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-x86-1.6.0-124.7.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:java-1_6_0-ibm-x86-1.6.0-124.7.1"},"product_reference":"java-1_6_0-ibm-x86-1.6.0-124.7.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_4_2-ibm-1.4.2_sr13.3-1.1.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:java-1_4_2-ibm-1.4.2_sr13.3-1.1.1"},"product_reference":"java-1_4_2-ibm-1.4.2_sr13.3-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1"},"product_reference":"java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1"},"product_reference":"java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-1.6.0_sr7.0-1.1.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-1.6.0_sr7.0-1.1.1"},"product_reference":"java-1_6_0-ibm-1.6.0_sr7.0-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1"},"product_reference":"java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1"},"product_reference":"java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1"},"product_reference":"java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1"},"product_reference":"java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1"},"product_reference":"java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"java-1_6_0-ibm-x86-1.6.0-124.7.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-x86-1.6.0-124.7.1"},"product_reference":"java-1_6_0-ibm-x86-1.6.0-124.7.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"}]},"vulnerabilities":[{"cve":"CVE-2009-3869","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2009-3869"}],"notes":[{"category":"general","text":"Stack-based buffer overflow in the setDiffICM function in the Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via a crafted argument, aka Bug Id 6872357.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Server 11:java-1_4_2-ibm-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server 11:java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server 11:java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-x86-1.6.0-124.7.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_4_2-ibm-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-x86-1.6.0-124.7.1"]},"references":[{"category":"external","summary":"CVE-2009-3869","url":"https://www.suse.com/security/cve/CVE-2009-3869"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 552581 for CVE-2009-3869","url":"https://bugzilla.suse.com/552581"},{"category":"external","summary":"SUSE Bug 552586 for CVE-2009-3869","url":"https://bugzilla.suse.com/552586"},{"category":"external","summary":"SUSE Bug 554069 for CVE-2009-3869","url":"https://bugzilla.suse.com/554069"},{"category":"external","summary":"SUSE Bug 561831 for CVE-2009-3869","url":"https://bugzilla.suse.com/561831"},{"category":"external","summary":"SUSE Bug 561859 for CVE-2009-3869","url":"https://bugzilla.suse.com/561859"},{"category":"external","summary":"SUSE Bug 566705 for CVE-2009-3869","url":"https://bugzilla.suse.com/566705"},{"category":"external","summary":"Advisory link for SUSE-SA:2009:058","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NV6LM42HO5YVHMRAT2VA5OIZYAYW6AX5/#NV6LM42HO5YVHMRAT2VA5OIZYAYW6AX5"},{"category":"external","summary":"Advisory link for SUSE-SA:2010:002","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/6ZW4QZ2RYGYI4GHHNXSAZGGFYM5QEF65/#6ZW4QZ2RYGYI4GHHNXSAZGGFYM5QEF65"},{"category":"external","summary":"Advisory link for SUSE-SA:2010:003","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/FLIPGAZLZYY44WWPPEROETFSIWDU3IK4/#FLIPGAZLZYY44WWPPEROETFSIWDU3IK4"},{"category":"external","summary":"Advisory link for SUSE-SA:2010:004","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/TSD32W5LAP3PUR6T3SSVS4Q6DX6WOHEP/#TSD32W5LAP3PUR6T3SSVS4Q6DX6WOHEP"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Server 11:java-1_4_2-ibm-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server 11:java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server 11:java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server 11:java-1_6_0-ibm-x86-1.6.0-124.7.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_4_2-ibm-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_4_2-ibm-jdbc-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_4_2-ibm-plugin-1.4.2_sr13.3-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-alsa-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-fonts-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-jdbc-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-plugin-1.6.0_sr7.0-1.1.1","SUSE Linux Enterprise Server for SAP Applications 11:java-1_6_0-ibm-x86-1.6.0-124.7.1"]}],"threats":[{"category":"impact","date":"2013-06-28T05:02:33Z","details":"critical"}],"title":"CVE-2009-3869"}]}