Note: This is an archival copy of Security Sun Alert 279590 as previously published on
Latest version of this security advisory is available from as Sun Alert 1022294.1.
Article ID : 1022294.1
Article Type : Sun Alerts (SURE)
Last reviewed : 2010-05-21
Audience : PUBLIC
Copyright Notice: Copyright © 2010, Oracle Corporation and/or its affiliates.

Oracle Security Alert for CVE-2010-0886 was released on April 15th, 2010.


Release Phase


Dear Oracle Security Alert Subscriber,

Oracle Security Alert for CVE-2010-0886 was released on April 15th, 2010.

Oracle strongly recommends updating to the latest releases as soon as possible if these
fixes are applicable to your environment.
Note: these vulnerabilities are not present in Java running on servers or standalone
Java desktop applications. They only affect Java running on Windows 32 bit when
running in a browser. Oracle server based software is not affected.

The Security Alert Advisory is the starting point for relevant information. It includes the
list of products affected, a summary of the security vulnerabilities, and a pointer to
obtain the latest releases and patches. Supported products that are not listed in the
"Supported Products Affected" section of the advisory do not require new patches to be applied.

Also, it is essential to review the Security Alert supporting documentation referenced in the
Advisory before applying patches, as this is where you can find important pertinent information.

The Advisory is available at the following location:

Oracle Critical Patch Updates and Security Alerts:
Oracle Security Alert CVE-2010-0886:

Thank you,
Customer Support of Oracle Corporation

Copyright 2010 (c) Oracle Corporation. All Rights Reserved.
Oracle Corporation. | 500 Oracle Parkway | Redwood Shores, CA 94065

This solution has no attachment