Action not permitted
Modal body text goes here.
CVE-2013-0429
Vulnerability from cvelistv5
Published
2013-02-02 00:00
Modified
2024-08-06 14:25
Severity ?
EPSS score ?
Summary
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T14:25:10.340Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "GLSA-201406-32", "tags": [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred" ], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "57710", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/57710" }, { "name": "MDVSA-2013:095", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:095" }, { "name": "SSRT101156", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/corba/rev/c1ed8145c1b8" }, { "name": "TA13-032A", "tags": [ "third-party-advisory", "x_refsource_CERT", "x_transferred" ], "url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html" }, { "name": "RHSA-2013:0236", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html" }, { "name": "VU#858729", "tags": [ "third-party-advisory", "x_refsource_CERT-VN", "x_transferred" ], "url": "http://www.kb.cert.org/vuls/id/858729" }, { "name": "oval:org.mitre.oval:def:19457", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19457" }, { "name": "RHSA-2013:0237", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html" }, { "name": "HPSBUX02857", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2" }, { "name": "RHSA-2013:0247", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0247.html" }, { "name": "oval:org.mitre.oval:def:16649", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16649" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907460" }, { "name": "oval:org.mitre.oval:def:19300", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19300" }, { "name": "HPSBMU02874", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2" }, { "name": "SSRT101103", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2" }, { "name": "openSUSE-SU-2013:0312", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00014.html" }, { "name": "openSUSE-SU-2013:0377", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00001.html" }, { "name": "RHSA-2013:0246", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0246.html" }, { "name": "oval:org.mitre.oval:def:19342", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19342" }, { "name": "HPSBUX02864", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2" }, { "name": "RHSA-2013:0245", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0245.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS" }, { "name": "SSRT101184", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2013-02-01T00:00:00", "descriptions": [ { "lang": "en", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-09-18T12:57:01", "orgId": "43595867-4340-4103-b7a2-9a5208d29a85", "shortName": "oracle" }, "references": [ { "name": "GLSA-201406-32", "tags": [ "vendor-advisory", "x_refsource_GENTOO" ], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "57710", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/57710" }, { "name": "MDVSA-2013:095", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:095" }, { "name": "SSRT101156", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/corba/rev/c1ed8145c1b8" }, { "name": "TA13-032A", "tags": [ "third-party-advisory", "x_refsource_CERT" ], "url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html" }, { "name": "RHSA-2013:0236", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html" }, { "name": "VU#858729", "tags": [ "third-party-advisory", "x_refsource_CERT-VN" ], "url": "http://www.kb.cert.org/vuls/id/858729" }, { "name": "oval:org.mitre.oval:def:19457", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19457" }, { "name": "RHSA-2013:0237", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html" }, { "name": "HPSBUX02857", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2" }, { "name": "RHSA-2013:0247", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0247.html" }, { "name": "oval:org.mitre.oval:def:16649", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16649" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907460" }, { "name": "oval:org.mitre.oval:def:19300", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19300" }, { "name": "HPSBMU02874", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2" }, { "name": "SSRT101103", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2" }, { "name": "openSUSE-SU-2013:0312", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00014.html" }, { "name": "openSUSE-SU-2013:0377", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00001.html" }, { "name": "RHSA-2013:0246", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0246.html" }, { "name": "oval:org.mitre.oval:def:19342", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19342" }, { "name": "HPSBUX02864", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2" }, { "name": "RHSA-2013:0245", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0245.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS" }, { "name": "SSRT101184", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-0429", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "GLSA-201406-32", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "57710", "refsource": "BID", "url": "http://www.securityfocus.com/bid/57710" }, { "name": "MDVSA-2013:095", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:095" }, { "name": "SSRT101156", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2" }, { "name": "http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/corba/rev/c1ed8145c1b8", "refsource": "CONFIRM", "url": "http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/corba/rev/c1ed8145c1b8" }, { "name": "TA13-032A", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html" }, { "name": "RHSA-2013:0236", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html" }, { "name": "VU#858729", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/858729" }, { "name": "oval:org.mitre.oval:def:19457", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19457" }, { "name": "RHSA-2013:0237", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html" }, { "name": "HPSBUX02857", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2" }, { "name": "RHSA-2013:0247", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0247.html" }, { "name": "oval:org.mitre.oval:def:16649", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16649" }, { "name": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907460", "refsource": "CONFIRM", "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907460" }, { "name": "oval:org.mitre.oval:def:19300", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19300" }, { "name": "HPSBMU02874", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2" }, { "name": "SSRT101103", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2" }, { "name": "openSUSE-SU-2013:0312", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00014.html" }, { "name": "openSUSE-SU-2013:0377", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00001.html" }, { "name": "RHSA-2013:0246", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0246.html" }, { "name": "oval:org.mitre.oval:def:19342", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19342" }, { "name": "HPSBUX02864", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2" }, { "name": "RHSA-2013:0245", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0245.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" }, { "name": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS", "refsource": "CONFIRM", "url": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS" }, { "name": "SSRT101184", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2" }, { "name": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056", "refsource": "CONFIRM", "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056" } ] } } } }, "cveMetadata": { "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85", "assignerShortName": "oracle", "cveId": "CVE-2013-0429", "datePublished": "2013-02-02T00:00:00", "dateReserved": "2012-12-07T00:00:00", "dateUpdated": "2024-08-06T14:25:10.340Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2013-0429\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2013-02-02T00:55:01.757\",\"lastModified\":\"2022-05-13T14:52:58.570\",\"vulnStatus\":\"Modified\",\"evaluatorComment\":\"Per http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html\\r\\n\\r\\n\\\"Applies to client deployment of Java only. This vulnerability can be exploited only through untrusted Java Web Start applications and untrusted Java applets. (Untrusted Java Web Start applications and untrusted applets run in the Java sandbox with limited privileges.)\\\"\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en el componente Java Runtime Environment (JRE) en Oracle Java SE v7 hasta Update 11 y v6 hasta Update 38, y v5.0 hasta Update 38 permite a atacantes remotos afectar la confidencialiad, integridad y disponibilidad mediante vectores relacionados con CORBA.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:H/Au:N/C:C/I:C/A:C\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"HIGH\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\",\"baseScore\":7.6},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":4.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C27372B-A091-46D5-AE39-A44BBB1D9EE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4B153FD-E20B-4909-8B10-884E48F5B590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"F21933FB-A27C-4AF3-9811-2DE28484A5A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2B20041-EB5D-4FA4-AC7D-C35E7878BCFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB106FA9-26CE-48C5-AEA5-FD1A5454AEE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"5831D70B-3854-4CB8-B88D-40F1743DAEE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEB101C9-CA38-4421-BC0C-C1AD47AA2CC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA302DF3-ABBB-4262-B206-4C0F7B5B1E91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9A8EBCB-5E6A-42F0-8D07-F3A3D1C850F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CD8A54E-185B-4D34-82EF-C0C05739EC12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FFC7F0D-1F32-4235-8359-277CE41382DF\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E44FC8AF-F76F-4A8E-8D03-4F8BCA8CB031\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"6152036D-6421-4AE4-9223-766FE07B5A44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE8B0935-6637-413D-B896-28E0ED7F2CEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"30B480BC-0886-4B19-B0A5-57B531077F40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"D375CECB-405C-4E18-A7E8-9C5A2F97BD69\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"52EEEA5A-E77C-43CF-A063-9D5C64EA1870\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"003746F6-DEF0-4D0F-AD97-9E335868E301\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF830E0E-0169-4B6A-81FF-2E9FCD7D913B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"6BAE3670-0938-480A-8472-DFF0B3A0D0BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EC967FF-26A6-4498-BC09-EC23B2B75CBA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"02781457-4E40-46A9-A5F7-945232A8C2B1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF13B96D-1F80-4672-8DA3-F86F6D3BF070\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1A2D440-D966-41A6-955D-38B28DDE0FDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1C57774-AD93-4162-8E45-92B09139C808\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD7C4194-D34A-418F-9B00-5C6012844AAE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAF7D86B-1B4D-4E1F-9EF0-DA7E419D7E99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"F0B82FB1-0F0E-44F9-87AE-628517279E4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0A67640-2F4A-488A-9D8F-3FE1F4DA8DEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D60D98D-4363-44A0-AAB4-B61BA623EE21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"23CDA4F0-C32B-4B08-A377-7D4426C2F569\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update32:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E76476E-4120-46A9-90A8-A95FE89636CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update33:*:*:*:*:*:*\",\"matchCriteriaId\":\"97A84689-0CED-404F-8DC3-708BEB37D2CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update34:*:*:*:*:*:*\",\"matchCriteriaId\":\"738EC3E5-A4EB-47FE-9C9A-7C8E8C669765\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update35:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF56E0D9-612D-4215-9C76-560AE0661A05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update37:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA717604-4BB0-4968-B258-7C9F884016FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.6.0:update38:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA71FCF4-580F-432D-AADC-65A2A92CEBC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBCD143C-057D-4F42-B487-46801E14ACF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*\",\"matchCriteriaId\":\"09027C19-D442-446F-B7A8-21DB6787CF43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A0FEC28-0707-4F42-9740-78F3D2D551EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3C5879A-A608-4230-9DC1-C27F0F48A13B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C71089A-BDDE-41FC-9DF9-9AEF4C2374DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DBB6B73-8D6B-41FF-BEE0-E0C7F5F1EB41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*\",\"matchCriteriaId\":\"12A3B254-8580-45DB-BDE4-5B5A29CBFFB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DB1DE6A-66AE-499B-AD92-9E6ACE474C6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*\",\"matchCriteriaId\":\"AADBB4F9-E43E-428B-9979-F47A15696C85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*\",\"matchCriteriaId\":\"49260B94-05DE-4B78-9068-6F5F6BFDD19E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4FDE9EB-08FE-436E-A265-30E83B15DB23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE409D5C-8F9F-4DE9-ACB7-0E0B813F6399\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*\",\"matchCriteriaId\":\"7158D2C0-E9AC-4CD6-B777-EA7B7A181997\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*\",\"matchCriteriaId\":\"B08C075B-9FC0-4381-A9E4-FFF0362BD308\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_21:*:*:*:*:*:*\",\"matchCriteriaId\":\"F587E635-3A15-4186-B6A1-F99BE0A56820\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"90EC6C13-4B37-48E5-8199-A702A944D5A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"2528152C-E20A-4D97-931C-A5EC3CEAA06D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"A99DAB4C-272B-4C91-BC70-7729E1152590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"30DFC10A-A4D9-4F89-B17C-AB9260087D29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"272A5C44-18EC-41A9-8233-E9D4D0734EA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.6.0:update_9:*:*:*:*:*:*\",\"matchCriteriaId\":\"81C2C04D-D4BA-4C87-9609-C53AA63BFF19\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"301E96A3-AD2F-48F3-9166-571BD6F9FAE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C9215D9-DB64-4CEE-85E6-E247035EFB09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"352509FE-54D9-4A59-98B7-96E5E98BC2CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3EC13D3-4CE7-459C-A7D7-7D38C1284720\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"8CDCD1B4-C5F3-4188-B05F-23922F7DE517\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"1824DA2D-26D5-4595-8376-8E41AB8C5E52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"B72F78B7-10D1-49CF-AC4D-3B10921CB633\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*\",\"matchCriteriaId\":\"60D05860-9424-4727-B583-74A35BC9BDFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"F85DB431-FEA4-42E7-AC29-6B66174DCD9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB7E911C-C780-440A-ABFF-CCE09061BB4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*\",\"matchCriteriaId\":\"0381EE39-2F60-49FD-A63A-B9E81C9033CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*\",\"matchCriteriaId\":\"9AD75455-B7F0-4F42-98E7-CAA43787D606\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BF0FD06-3953-49AB-A9AA-ACB6883E2D2E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*\",\"matchCriteriaId\":\"62823E8E-99CF-40DB-B43E-CBA4E9A2F916\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEA04B0D-D4E3-497D-9564-046B1CDA2342\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3A4FEC7-A4A0-4B5C-A56C-8F80AE19865E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"722A93D8-B5BC-42F3-92A2-E424F61269A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*\",\"matchCriteriaId\":\"775F2611-F11C-4B84-8F40-0D034B81BF18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*\",\"matchCriteriaId\":\"F20FDD9F-FF45-48BC-9207-54FB02E76071\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FA326F5-894A-4B01-BCA3-B126DA81CA59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*\",\"matchCriteriaId\":\"228AB7B4-4BA4-43D4-B562-D438884DB152\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFD5C688-2103-4D60-979E-D9BE69A989C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*\",\"matchCriteriaId\":\"21421215-F722-4207-A2E5-E2DF4B29859B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*\",\"matchCriteriaId\":\"BFB9EA23-0EF7-4582-A265-3F5AA9EC81B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*\",\"matchCriteriaId\":\"C367B418-659E-4627-B1F1-1B1216C99055\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD5E6D4E-DDDD-4B45-B5E9-F8A916287AF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*\",\"matchCriteriaId\":\"7358492A-491C-491E-AEDF-63CB82619BAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3DACAAF-AFDC-4391-9E85-344F30937F76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"D98175BF-B084-4FA5-899D-9E80DC3923EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"820632CE-F8DF-47EE-B716-7530E60008B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA2BD0A3-7B2D-447B-ABAC-7B867B03B632\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"D54AB785-E9B7-47BD-B756-0C3A629D67DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9412098-0353-4F7B-9245-010557E6C651\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD30DAEB-4893-41CF-A455-B69C463B9337\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*\",\"matchCriteriaId\":\"21D6CE7E-A036-496C-8E08-A87F62B5290A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8F93BBE-1E8C-4EB3-BCC7-20AB2D813F98\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.5.0:update36:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC062AE6-515B-4D40-9B86-46F7A1D7FF1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.5.0:update38:*:*:*:*:*:*\",\"matchCriteriaId\":\"B4A2D725-A7DC-4802-A377-5C3963AD9941\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"133A7B66-E0B3-4867-A5A4-3C54D6C0C8ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7FC09E8-7F30-4FE4-912E-588AA250E2A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"A586DE4E-8A46-41DE-9FDB-5FDB81DCC87B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"9919D091-73D7-465A-80FF-F37D6CAF9F46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update12:*:*:*:*:*:*\",\"matchCriteriaId\":\"02565D6F-4CB2-4671-A4EF-3169BCFA6154\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update13:*:*:*:*:*:*\",\"matchCriteriaId\":\"452A3E51-9EAC-451D-BA04-A1E7B7D917EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update14:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E8C6AAC-C90B-4220-A69B-2A886A35CF5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update15:*:*:*:*:*:*\",\"matchCriteriaId\":\"55231B6B-9298-4363-9B5A-14C2DA7B1F50\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update16:*:*:*:*:*:*\",\"matchCriteriaId\":\"E42CF0F7-418C-4BB6-9B73-FA3B9171D092\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update17:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5467E9D-07D8-4BEB-84D5-A3136C133519\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update18:*:*:*:*:*:*\",\"matchCriteriaId\":\"B83B2CE1-45D7-47AD-BC0A-6EC74D5F8F5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update19:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A32F326-EA92-43CD-930E-E527B60CDD3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EA5B9E9-654D-44F7-AE98-3D8B382804AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update20:*:*:*:*:*:*\",\"matchCriteriaId\":\"04344167-530E-4A4D-90EF-74C684943DF1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update21:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0E0373B-201D-408F-9234-A7EFE8B4970D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"15EAD76D-D5D0-4984-9D07-C1451D791083\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE949EBF-2BC0-4355-8B28-B494023D45FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E0A0A2D-62B9-4A00-84EF-90C15E47A632\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"A070A282-CBD6-4041-B149-5E310BD12E7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"3ECAE71B-C549-4EFB-A509-BFD599F5917A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"044BADDD-A80B-4AE2-8595-5F8186314550\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update28:*:*:*:*:*:*\",\"matchCriteriaId\":\"B7FC11BE-8CF7-4D45-BB4A-3EFA1DDBB10D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D75C40D-62AE-47F2-A6E0-53F3495260BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"44051CFE-D15D-4416-A123-F3E49C67A9E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C061911-FB19-45EB-8E88-7450224F4023\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update33:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E8009BC-F5A8-4D00-9F5F-8635475C6065\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"F296ACF3-1373-429D-B991-8B5BA704A7EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"B863420B-DE16-416A-9640-1A1340A9B855\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"724C972F-74FE-4044-BBC4-7E0E61FC9002\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"46F41C15-0EF4-4115-BFAA-EEAD56FAEEDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update8:*:*:*:*:*:*\",\"matchCriteriaId\":\"EBE909DE-E55A-4BD3-A5BF-ADE407432193\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jre:1.5.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DAC04D2-68FD-4793-A8E7-4690A543D7D4\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.5.0:update36:*:*:*:*:*:*\",\"matchCriteriaId\":\"47E3CD14-7C90-4ECF-BEB8-BCAD9EB5883B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.5.0:update38:*:*:*:*:*:*\",\"matchCriteriaId\":\"56A0449D-E87C-4BAC-AEB3-3C3DBEC1BFDF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A02CF738-1B4F-44D0-A618-3D3E4EF1C9B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE8E883F-E13D-4FB0-8C6F-B7628600E8D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"2AADA633-EB11-49A0-8E40-66589034F03E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"19DC29C5-1B9F-46DF-ACF6-3FF93E45777D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update11_b03:*:*:*:*:*:*\",\"matchCriteriaId\":\"646DDCA6-AAC4-4FA8-B9B5-51F88D4C001D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update12:*:*:*:*:*:*\",\"matchCriteriaId\":\"B120F7D9-7C1E-4716-B2FA-2990D449F754\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update13:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD61E49F-2A46-4107-BB3F-527079983306\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update14:*:*:*:*:*:*\",\"matchCriteriaId\":\"D900AAE0-6032-4096-AFC2-3D43C55C6C83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update15:*:*:*:*:*:*\",\"matchCriteriaId\":\"88B0958C-744C-4946-908C-09D2A5FAB120\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update16:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3E7F3CA-FFB3-42B3-A64F-0E38FAF252FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update17:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A2D8D09-3F18-4E73-81CF-BB589BB8AEC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update18:*:*:*:*:*:*\",\"matchCriteriaId\":\"3FD24779-988F-4EC1-AC19-77186B68229E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update19:*:*:*:*:*:*\",\"matchCriteriaId\":\"4F1E860E-98F2-48FF-B8B3-54D4B58BF81F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"28BE548B-DD0C-4C58-98CA-5B803F04F9EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update20:*:*:*:*:*:*\",\"matchCriteriaId\":\"505A8F40-7758-412F-8895-FA1B00BE6B7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update21:*:*:*:*:*:*\",\"matchCriteriaId\":\"212F4A5F-87E3-4C62-BA21-46CBBCD8D26A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update22:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C4DFCD2-00A3-4BC7-8842-836CE22C7B39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update23:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB3A0C49-3FF9-4CB7-9E01-F771D4925103\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update24:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7D1BBD4-2F88-4372-B863-BB70753D841B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A75A4C0-6B49-424B-BEC0-0E0AAEF877B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update26:*:*:*:*:*:*\",\"matchCriteriaId\":\"03555D1A-9470-4227-B843-E6EF91A6BC55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update27:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8F98346-B755-4082-B873-21A9792C231B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update28:*:*:*:*:*:*\",\"matchCriteriaId\":\"569BD939-9AF4-4AF0-88F0-1055FBAF2D87\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update29:*:*:*:*:*:*\",\"matchCriteriaId\":\"77D6F71D-F584-4920-8143-FEF374CED2C7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F8E9AA0-8907-4B1A-86A1-08568195217D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update31:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FEFE472-63A9-4D02-A674-2EFA4C781D25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update33:*:*:*:*:*:*\",\"matchCriteriaId\":\"15CBCC05-5D20-4672-9BDD-879F8CB933FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"A337AD31-4566-4A4E-AFF3-7EAECD5C90F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"0754AFDC-2F1C-4C06-AB46-457B5E610029\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"532CF9DD-0EBB-4B3B-BB9C-A8D78947A790\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC0ABF7A-107B-4B97-9BD7-7B0CEDAAF359\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update7_b03:*:*:*:*:*:*\",\"matchCriteriaId\":\"59ED507D-AEF8-4631-A298-8BDA6D6E8CB0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update8:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5DA4242-30D9-44C8-9D0D-877348FFA22B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:jdk:1.5.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"C61C6043-99D0-4F36-AF84-1A5F90B895EE\"}]}]}],\"references\":[{\"url\":\"http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907460\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/corba/rev/c1ed8145c1b8\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00014.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00001.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0236.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0237.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0245.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0246.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-0247.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-201406-32.xml\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.kb.cert.org/vuls/id/858729\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2013:095\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/57710\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA13-032A.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"US Government Resource\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16649\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19300\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19342\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19457\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056\",\"source\":\"secalert_us@oracle.com\"}]}}" } }
gsd-2013-0429
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2013-0429", "description": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.", "id": "GSD-2013-0429", "references": [ "https://www.suse.com/security/cve/CVE-2013-0429.html", "https://access.redhat.com/errata/RHSA-2013:0247", "https://access.redhat.com/errata/RHSA-2013:0246", "https://access.redhat.com/errata/RHSA-2013:0245", "https://access.redhat.com/errata/RHSA-2013:0237", "https://access.redhat.com/errata/RHSA-2013:0236", "https://linux.oracle.com/cve/CVE-2013-0429.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2013-0429" ], "details": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.", "id": "GSD-2013-0429", "modified": "2023-12-13T01:22:14.829042Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-0429", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "GLSA-201406-32", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "57710", "refsource": "BID", "url": "http://www.securityfocus.com/bid/57710" }, { "name": "MDVSA-2013:095", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:095" }, { "name": "SSRT101156", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2" }, { "name": "http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/corba/rev/c1ed8145c1b8", "refsource": "CONFIRM", "url": "http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/corba/rev/c1ed8145c1b8" }, { "name": "TA13-032A", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html" }, { "name": "RHSA-2013:0236", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html" }, { "name": "VU#858729", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/858729" }, { "name": "oval:org.mitre.oval:def:19457", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19457" }, { "name": "RHSA-2013:0237", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html" }, { "name": "HPSBUX02857", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2" }, { "name": "RHSA-2013:0247", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0247.html" }, { "name": "oval:org.mitre.oval:def:16649", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16649" }, { "name": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907460", "refsource": "CONFIRM", "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907460" }, { "name": "oval:org.mitre.oval:def:19300", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19300" }, { "name": "HPSBMU02874", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2" }, { "name": "SSRT101103", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2" }, { "name": "openSUSE-SU-2013:0312", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00014.html" }, { "name": "openSUSE-SU-2013:0377", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00001.html" }, { "name": "RHSA-2013:0246", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0246.html" }, { "name": "oval:org.mitre.oval:def:19342", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19342" }, { "name": "HPSBUX02864", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2" }, { "name": "RHSA-2013:0245", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0245.html" }, { "name": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" }, { "name": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS", "refsource": "CONFIRM", "url": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS" }, { "name": "SSRT101184", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2" }, { "name": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056", "refsource": "CONFIRM", "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update35:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update32:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update30:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.6.0:update_4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update34:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update37:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.6.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update32:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1_b06:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.6.0:update_6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update37:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update30:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update35:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update34:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.6.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update8:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update28:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.5.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.5.0:update36:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jre:1.5.0:update17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update20:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update18:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update27:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update31:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update26:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update16:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update33:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update24:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update23:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update14:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update7_b03:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update29:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update22:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update28:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update11_b03:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.5.0:update38:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.5.0:update36:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update8:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:sun:jdk:1.5.0:update19:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-0429" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" }, { "name": "RHSA-2013:0237", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html" }, { "name": "RHSA-2013:0236", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html" }, { "name": "TA13-032A", "refsource": "CERT", "tags": [ "US Government Resource" ], "url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html" }, { "name": "VU#858729", "refsource": "CERT-VN", "tags": [ "US Government Resource" ], "url": "http://www.kb.cert.org/vuls/id/858729" }, { "name": "RHSA-2013:0245", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2013-0245.html" }, { "name": "RHSA-2013:0247", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2013-0247.html" }, { "name": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907460", "refsource": "CONFIRM", "tags": [], "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907460" }, { "name": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS", "refsource": "CONFIRM", "tags": [], "url": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS" }, { "name": "RHSA-2013:0246", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2013-0246.html" }, { "name": "http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/corba/rev/c1ed8145c1b8", "refsource": "CONFIRM", "tags": [], "url": "http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/corba/rev/c1ed8145c1b8" }, { "name": "openSUSE-SU-2013:0377", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00001.html" }, { "name": "openSUSE-SU-2013:0312", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00014.html" }, { "name": "HPSBUX02857", "refsource": "HP", "tags": [], "url": "http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2" }, { "name": "SSRT101156", "refsource": "HP", "tags": [], "url": "http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2" }, { "name": "HPSBMU02874", "refsource": "HP", "tags": [], "url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2" }, { "name": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056", "refsource": "CONFIRM", "tags": [], "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056" }, { "name": "MDVSA-2013:095", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:095" }, { "name": "GLSA-201406-32", "refsource": "GENTOO", "tags": [], "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "name": "57710", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/57710" }, { "name": "oval:org.mitre.oval:def:19457", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19457" }, { "name": "oval:org.mitre.oval:def:19342", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19342" }, { "name": "oval:org.mitre.oval:def:19300", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19300" }, { "name": "oval:org.mitre.oval:def:16649", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16649" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0" }, "exploitabilityScore": 4.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false } }, "lastModifiedDate": "2022-05-13T14:52Z", "publishedDate": "2013-02-02T00:55Z" } } }
rhsa-2013_0245
Vulnerability from csaf_redhat
Published
2013-02-08 19:04
Modified
2024-11-14 12:13
Summary
Red Hat Security Advisory: java-1.6.0-openjdk security update
Notes
Topic
Updated java-1.6.0-openjdk packages that fix several security issues are
now available for Red Hat Enterprise Linux 6.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
These packages provide the OpenJDK 6 Java Runtime Environment and the
OpenJDK 6 Software Development Kit.
Multiple improper permission check issues were discovered in the AWT,
CORBA, JMX, and Libraries components in OpenJDK. An untrusted Java
application or applet could use these flaws to bypass Java sandbox
restrictions. (CVE-2013-0442, CVE-2013-0445, CVE-2013-0441, CVE-2013-1475,
CVE-2013-1476, CVE-2013-0429, CVE-2013-0450, CVE-2013-0425, CVE-2013-0426,
CVE-2013-0428)
Multiple flaws were found in the way image parsers in the 2D and AWT
components handled image raster parameters. A specially-crafted image could
cause Java Virtual Machine memory corruption and, possibly, lead to
arbitrary code execution with the virtual machine privileges.
(CVE-2013-1478, CVE-2013-1480)
A flaw was found in the AWT component's clipboard handling code. An
untrusted Java application or applet could use this flaw to access
clipboard data, bypassing Java sandbox restrictions. (CVE-2013-0432)
The default Java security properties configuration did not restrict access
to certain com.sun.xml.internal packages. An untrusted Java application or
applet could use this flaw to access information, bypassing certain Java
sandbox restrictions. This update lists the whole package as restricted.
(CVE-2013-0435)
Multiple improper permission check issues were discovered in the Libraries,
Networking, and JAXP components. An untrusted Java application or applet
could use these flaws to bypass certain Java sandbox restrictions.
(CVE-2013-0427, CVE-2013-0433, CVE-2013-0434)
It was discovered that the RMI component's CGIHandler class used user
inputs in error messages without any sanitization. An attacker could use
this flaw to perform a cross-site scripting (XSS) attack. (CVE-2013-0424)
It was discovered that the SSL/TLS implementation in the JSSE component
did not properly enforce handshake message ordering, allowing an unlimited
number of handshake restarts. A remote attacker could use this flaw to
make an SSL/TLS server using JSSE consume an excessive amount of CPU by
continuously restarting the handshake. (CVE-2013-0440)
It was discovered that the JSSE component did not properly validate
Diffie-Hellman public keys. An SSL/TLS client could possibly use this flaw
to perform a small subgroup attack. (CVE-2013-0443)
Note: If the web browser plug-in provided by the icedtea-web package was
installed, the issues exposed via Java applets could have been exploited
without user interaction if a user visited a malicious website.
This erratum also upgrades the OpenJDK package to IcedTea6 1.11.6. Refer to
the NEWS file, linked to in the References, for further information.
All users of java-1.6.0-openjdk are advised to upgrade to these updated
packages, which resolve these issues. All running instances of OpenJDK Java
must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.6.0-openjdk packages that fix several security issues are\nnow available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "These packages provide the OpenJDK 6 Java Runtime Environment and the\nOpenJDK 6 Software Development Kit.\n\nMultiple improper permission check issues were discovered in the AWT,\nCORBA, JMX, and Libraries components in OpenJDK. An untrusted Java\napplication or applet could use these flaws to bypass Java sandbox\nrestrictions. (CVE-2013-0442, CVE-2013-0445, CVE-2013-0441, CVE-2013-1475,\nCVE-2013-1476, CVE-2013-0429, CVE-2013-0450, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0428)\n\nMultiple flaws were found in the way image parsers in the 2D and AWT\ncomponents handled image raster parameters. A specially-crafted image could\ncause Java Virtual Machine memory corruption and, possibly, lead to\narbitrary code execution with the virtual machine privileges.\n(CVE-2013-1478, CVE-2013-1480)\n\nA flaw was found in the AWT component\u0027s clipboard handling code. An\nuntrusted Java application or applet could use this flaw to access\nclipboard data, bypassing Java sandbox restrictions. (CVE-2013-0432)\n\nThe default Java security properties configuration did not restrict access\nto certain com.sun.xml.internal packages. An untrusted Java application or\napplet could use this flaw to access information, bypassing certain Java\nsandbox restrictions. This update lists the whole package as restricted.\n(CVE-2013-0435)\n\nMultiple improper permission check issues were discovered in the Libraries,\nNetworking, and JAXP components. An untrusted Java application or applet\ncould use these flaws to bypass certain Java sandbox restrictions.\n(CVE-2013-0427, CVE-2013-0433, CVE-2013-0434)\n\nIt was discovered that the RMI component\u0027s CGIHandler class used user\ninputs in error messages without any sanitization. An attacker could use\nthis flaw to perform a cross-site scripting (XSS) attack. (CVE-2013-0424)\n\nIt was discovered that the SSL/TLS implementation in the JSSE component\ndid not properly enforce handshake message ordering, allowing an unlimited\nnumber of handshake restarts. A remote attacker could use this flaw to\nmake an SSL/TLS server using JSSE consume an excessive amount of CPU by\ncontinuously restarting the handshake. (CVE-2013-0440)\n\nIt was discovered that the JSSE component did not properly validate\nDiffie-Hellman public keys. An SSL/TLS client could possibly use this flaw\nto perform a small subgroup attack. (CVE-2013-0443)\n\nNote: If the web browser plug-in provided by the icedtea-web package was\ninstalled, the issues exposed via Java applets could have been exploited\nwithout user interaction if a user visited a malicious website.\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.11.6. Refer to\nthe NEWS file, linked to in the References, for further information.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0245", "url": "https://access.redhat.com/errata/RHSA-2013:0245" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS", "url": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS" }, { "category": "external", "summary": "859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "860652", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652" }, { "category": "external", "summary": "906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "907460", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0245.json" } ], "title": "Red Hat Security Advisory: java-1.6.0-openjdk security update", "tracking": { "current_release_date": "2024-11-14T12:13:56+00:00", "generator": { "date": "2024-11-14T12:13:56+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2013:0245", "initial_release_date": "2013-02-08T19:04:00+00:00", "revision_history": [ { "date": "2013-02-08T19:04:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-02-08T19:35:08+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T12:13:56+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.54.1.11.6.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.54.1.11.6.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.54.1.11.6.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.54.1.11.6.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.54.1.11.6.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.54.1.11.6.el6_3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.54.1.11.6.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.54.1.11.6.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.54.1.11.6.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.54.1.11.6.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.54.1.11.6.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.54.1.11.6.el6_3?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.54.1.11.6.el6_3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-0424", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906813" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0424" }, { "category": "external", "summary": "RHBZ#906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)" }, { "cve": "CVE-2013-0425", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907344" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0425" }, { "category": "external", "summary": "RHBZ#907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0425" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)" }, { "cve": "CVE-2013-0426", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907346" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0426" }, { "category": "external", "summary": "RHBZ#907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0426" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)" }, { "cve": "CVE-2013-0427", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907455" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0427" }, { "category": "external", "summary": "RHBZ#907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0427" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)" }, { "cve": "CVE-2013-0428", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907207" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0428" }, { "category": "external", "summary": "RHBZ#907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0428" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)" }, { "cve": "CVE-2013-0429", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907460" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0429" }, { "category": "external", "summary": "RHBZ#907460", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)" }, { "cve": "CVE-2013-0432", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907219" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0432" }, { "category": "external", "summary": "RHBZ#907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0432" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)" }, { "cve": "CVE-2013-0433", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907456" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0433" }, { "category": "external", "summary": "RHBZ#907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)" }, { "cve": "CVE-2013-0434", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907453" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0434" }, { "category": "external", "summary": "RHBZ#907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0434" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)" }, { "cve": "CVE-2013-0435", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906892" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0435" }, { "category": "external", "summary": "RHBZ#906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0435" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)" }, { "cve": "CVE-2013-0440", "discovery_date": "2012-07-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "859140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0440" }, { "category": "external", "summary": "RHBZ#859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)" }, { "cve": "CVE-2013-0441", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907458" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing serialization restriction (CORBA, 7201066)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0441" }, { "category": "external", "summary": "RHBZ#907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0441" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing serialization restriction (CORBA, 7201066)" }, { "cve": "CVE-2013-0442", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906899" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0442" }, { "category": "external", "summary": "RHBZ#906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)" }, { "cve": "CVE-2013-0443", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907340" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0443" }, { "category": "external", "summary": "RHBZ#907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)" }, { "cve": "CVE-2013-0445", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906900" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0445" }, { "category": "external", "summary": "RHBZ#906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)" }, { "cve": "CVE-2013-0450", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906911" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0450" }, { "category": "external", "summary": "RHBZ#906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)" }, { "cve": "CVE-2013-1475", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "860652" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"IIOP type reuse management\" in ObjectStreamClass.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1475" }, { "category": "external", "summary": "RHBZ#860652", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1475", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1475" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)" }, { "cve": "CVE-2013-1476", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907457" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1476" }, { "category": "external", "summary": "RHBZ#907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1476" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)" }, { "cve": "CVE-2013-1478", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906894" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1478" }, { "category": "external", "summary": "RHBZ#906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)" }, { "cve": "CVE-2013-1480", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906904" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1480" }, { "category": "external", "summary": "RHBZ#906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:04:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0245" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Client-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Client-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Server-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Server-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.src", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.i686", "6Workstation-optional-6.3.z:java-1.6.0-openjdk-src-1:1.6.0.0-1.54.1.11.6.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)" } ] }
rhsa-2013_0237
Vulnerability from csaf_redhat
Published
2013-02-04 23:51
Modified
2024-11-14 12:13
Summary
Red Hat Security Advisory: java-1.7.0-oracle security update
Notes
Topic
Updated java-1.7.0-oracle packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
Oracle Java SE version 7 includes the Oracle Java Runtime Environment and
the Oracle Java Software Development Kit.
This update fixes several vulnerabilities in the Oracle Java Runtime
Environment and the Oracle Java Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch Update Advisory page, listed in the References section.
(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,
CVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,
CVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0431,
CVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0437,
CVE-2013-0438, CVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443,
CVE-2013-0444, CVE-2013-0445, CVE-2013-0446, CVE-2013-0448, CVE-2013-0449,
CVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,
CVE-2013-1479, CVE-2013-1480, CVE-2013-1489)
All users of java-1.7.0-oracle are advised to upgrade to these updated
packages, which provide Oracle Java 7 Update 13 and resolve these issues.
All running instances of Oracle Java must be restarted for the update to
take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,\nCVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0431,\nCVE-2013-0432, CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0437,\nCVE-2013-0438, CVE-2013-0440, CVE-2013-0441, CVE-2013-0442, CVE-2013-0443,\nCVE-2013-0444, CVE-2013-0445, CVE-2013-0446, CVE-2013-0448, CVE-2013-0449,\nCVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,\nCVE-2013-1479, CVE-2013-1480, CVE-2013-1489)\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 13 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0237", "url": "https://access.redhat.com/errata/RHSA-2013:0237" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" }, { "category": "external", "summary": "859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "860652", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652" }, { "category": "external", "summary": "906447", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906447" }, { "category": "external", "summary": "906449", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906449" }, { "category": "external", "summary": "906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "906914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914" }, { "category": "external", "summary": "906916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916" }, { "category": "external", "summary": "906917", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917" }, { "category": "external", "summary": "906918", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918" }, { "category": "external", "summary": "906921", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921" }, { "category": "external", "summary": "906923", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923" }, { "category": "external", "summary": "906930", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930" }, { "category": "external", "summary": "906932", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906932" }, { "category": "external", "summary": "906933", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933" }, { "category": "external", "summary": "906934", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906934" }, { "category": "external", "summary": "906935", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935" }, { "category": "external", "summary": "907190", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907190" }, { "category": "external", "summary": "907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "907218", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907218" }, { "category": "external", "summary": "907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "907222", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907222" }, { "category": "external", "summary": "907223", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223" }, { "category": "external", "summary": "907226", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226" }, { "category": "external", "summary": "907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "907460", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0237.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-oracle security update", "tracking": { "current_release_date": "2024-11-14T12:13:46+00:00", "generator": { "date": "2024-11-14T12:13:46+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2013:0237", "initial_release_date": "2013-02-04T23:51:00+00:00", "revision_history": [ { "date": "2013-02-04T23:51:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-02-04T23:53:02+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T12:13:46+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:5::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.3.el6_3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.13-1jpp.3.el6_3?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2012-1541", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906914" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an interaction error in between the JRE plug-in for WebKit-based browsers and the Javascript engine, which allows remote attackers to execute arbitrary code by modifying DOM nodes that contain applet elements in a way that triggers an incorrect reference count and a use after free.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1541" }, { "category": "external", "summary": "RHBZ#906914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1541", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1541" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2012-3213", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907223" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3213" }, { "category": "external", "summary": "RHBZ#907223", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3213", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3213" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)" }, { "cve": "CVE-2012-3342", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906917" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3342" }, { "category": "external", "summary": "RHBZ#906917", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3342", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3342" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0351", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906923" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0351" }, { "category": "external", "summary": "RHBZ#906923", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0351", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0351" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0409", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907226" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0409" }, { "category": "external", "summary": "RHBZ#907226", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0409", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0409" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)" }, { "cve": "CVE-2013-0419", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906918" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0419" }, { "category": "external", "summary": "RHBZ#906918", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0419", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0419" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0423", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906921" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0423" }, { "category": "external", "summary": "RHBZ#906921", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0423", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0423" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0424", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906813" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0424" }, { "category": "external", "summary": "RHBZ#906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)" }, { "cve": "CVE-2013-0425", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907344" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0425" }, { "category": "external", "summary": "RHBZ#907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0425" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)" }, { "cve": "CVE-2013-0426", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907346" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0426" }, { "category": "external", "summary": "RHBZ#907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0426" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)" }, { "cve": "CVE-2013-0427", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907455" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0427" }, { "category": "external", "summary": "RHBZ#907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0427" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)" }, { "cve": "CVE-2013-0428", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907207" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0428" }, { "category": "external", "summary": "RHBZ#907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0428" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)" }, { "cve": "CVE-2013-0429", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907460" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0429" }, { "category": "external", "summary": "RHBZ#907460", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)" }, { "cve": "CVE-2013-0430", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906930" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0430" }, { "category": "external", "summary": "RHBZ#906930", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0430", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0430" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)" }, { "cve": "CVE-2013-0431", "discovery_date": "2013-01-31T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906447" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX, aka \"Issue 52,\" a different vulnerability than CVE-2013-1490.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JMX Introspector missing package access check (JMX, 8000539, SE-2012-01 Issue 52)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0431" }, { "category": "external", "summary": "RHBZ#906447", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906447" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0431", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0431" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0431", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0431" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-01-27T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-05-25T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JMX Introspector missing package access check (JMX, 8000539, SE-2012-01 Issue 52)" }, { "cve": "CVE-2013-0432", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907219" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0432" }, { "category": "external", "summary": "RHBZ#907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0432" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)" }, { "cve": "CVE-2013-0433", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907456" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0433" }, { "category": "external", "summary": "RHBZ#907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)" }, { "cve": "CVE-2013-0434", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907453" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0434" }, { "category": "external", "summary": "RHBZ#907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0434" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)" }, { "cve": "CVE-2013-0435", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906892" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0435" }, { "category": "external", "summary": "RHBZ#906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0435" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)" }, { "cve": "CVE-2013-0437", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907222" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u13 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0437" }, { "category": "external", "summary": "RHBZ#907222", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907222" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0437", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0437" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0437", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0437" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u13 (2D)" }, { "cve": "CVE-2013-0438", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906935" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0438" }, { "category": "external", "summary": "RHBZ#906935", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0438", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0438" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0440", "discovery_date": "2012-07-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "859140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0440" }, { "category": "external", "summary": "RHBZ#859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)" }, { "cve": "CVE-2013-0441", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907458" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing serialization restriction (CORBA, 7201066)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0441" }, { "category": "external", "summary": "RHBZ#907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0441" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing serialization restriction (CORBA, 7201066)" }, { "cve": "CVE-2013-0442", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906899" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0442" }, { "category": "external", "summary": "RHBZ#906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)" }, { "cve": "CVE-2013-0443", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907340" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0443" }, { "category": "external", "summary": "RHBZ#907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)" }, { "cve": "CVE-2013-0444", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907218" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient checks for cached results\" by the Java Beans MethodFinder, which might allow attackers to access methods that should only be accessible to privileged code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MethodFinder insufficient checks for cached results (Beans, 7200493)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0444" }, { "category": "external", "summary": "RHBZ#907218", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907218" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0444", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0444" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0444", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0444" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MethodFinder insufficient checks for cached results (Beans, 7200493)" }, { "cve": "CVE-2013-0445", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906900" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0445" }, { "category": "external", "summary": "RHBZ#906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)" }, { "cve": "CVE-2013-0446", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906916" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0446" }, { "category": "external", "summary": "RHBZ#906916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0448", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906934" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u13 (Libraries)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0448" }, { "category": "external", "summary": "RHBZ#906934", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906934" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0448", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0448" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0448", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0448" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u13 (Libraries)" }, { "cve": "CVE-2013-0449", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906932" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0449" }, { "category": "external", "summary": "RHBZ#906932", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906932" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0449", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0449" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0449", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0449" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u13 (Deployment)" }, { "cve": "CVE-2013-0450", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906911" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0450" }, { "category": "external", "summary": "RHBZ#906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)" }, { "cve": "CVE-2013-1473", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906933" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1473" }, { "category": "external", "summary": "RHBZ#906933", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-1475", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "860652" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"IIOP type reuse management\" in ObjectStreamClass.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1475" }, { "category": "external", "summary": "RHBZ#860652", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1475", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1475" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)" }, { "cve": "CVE-2013-1476", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907457" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1476" }, { "category": "external", "summary": "RHBZ#907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1476" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)" }, { "cve": "CVE-2013-1478", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906894" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1478" }, { "category": "external", "summary": "RHBZ#906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)" }, { "cve": "CVE-2013-1479", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907190" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1479" }, { "category": "external", "summary": "RHBZ#907190", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907190" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1479", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1479" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1479", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1479" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JavaFX)" }, { "cve": "CVE-2013-1480", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906904" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1480" }, { "category": "external", "summary": "RHBZ#906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)" }, { "cve": "CVE-2013-1489", "discovery_date": "2013-01-31T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906449" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 10 and Update 11, when running on Windows using Internet Explorer, Firefox, Opera, and Google Chrome, allows remote attackers to bypass the \"Very High\" security level of the Java Control Panel and execute unsigned Java code without prompting the user via unknown vectors, aka \"Issue 53\" and the \"Java Security Slider\" vulnerability.", "title": "Vulnerability description" }, { "category": "summary", "text": "7: bypass of the security level setting in browser plugin (Deployment, SE-2012-01 Issue 53)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1489" }, { "category": "external", "summary": "RHBZ#906449", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906449" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1489", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1489" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1489", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1489" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-01-27T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:51:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0237" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 0.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-devel-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-javafx-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-jdbc-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-plugin-1:1.7.0.13-1jpp.3.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.7.0-oracle-src-1:1.7.0.13-1jpp.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "7: bypass of the security level setting in browser plugin (Deployment, SE-2012-01 Issue 53)" } ] }
rhsa-2013_0246
Vulnerability from csaf_redhat
Published
2013-02-08 19:06
Modified
2024-11-14 12:14
Summary
Red Hat Security Advisory: java-1.6.0-openjdk security update
Notes
Topic
Updated java-1.6.0-openjdk packages that fix several security issues are
now available for Red Hat Enterprise Linux 5.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
These packages provide the OpenJDK 6 Java Runtime Environment and the
OpenJDK 6 Software Development Kit.
Multiple improper permission check issues were discovered in the AWT,
CORBA, JMX, and Libraries components in OpenJDK. An untrusted Java
application or applet could use these flaws to bypass Java sandbox
restrictions. (CVE-2013-0442, CVE-2013-0445, CVE-2013-0441, CVE-2013-1475,
CVE-2013-1476, CVE-2013-0429, CVE-2013-0450, CVE-2013-0425, CVE-2013-0426,
CVE-2013-0428)
Multiple flaws were found in the way image parsers in the 2D and AWT
components handled image raster parameters. A specially-crafted image could
cause Java Virtual Machine memory corruption and, possibly, lead to
arbitrary code execution with the virtual machine privileges.
(CVE-2013-1478, CVE-2013-1480)
A flaw was found in the AWT component's clipboard handling code. An
untrusted Java application or applet could use this flaw to access
clipboard data, bypassing Java sandbox restrictions. (CVE-2013-0432)
The default Java security properties configuration did not restrict access
to certain com.sun.xml.internal packages. An untrusted Java application or
applet could use this flaw to access information, bypassing certain Java
sandbox restrictions. This update lists the whole package as restricted.
(CVE-2013-0435)
Multiple improper permission check issues were discovered in the Libraries,
Networking, and JAXP components. An untrusted Java application or applet
could use these flaws to bypass certain Java sandbox restrictions.
(CVE-2013-0427, CVE-2013-0433, CVE-2013-0434)
It was discovered that the RMI component's CGIHandler class used user
inputs in error messages without any sanitization. An attacker could use
this flaw to perform a cross-site scripting (XSS) attack. (CVE-2013-0424)
It was discovered that the SSL/TLS implementation in the JSSE component
did not properly enforce handshake message ordering, allowing an unlimited
number of handshake restarts. A remote attacker could use this flaw to
make an SSL/TLS server using JSSE consume an excessive amount of CPU by
continuously restarting the handshake. (CVE-2013-0440)
It was discovered that the JSSE component did not properly validate
Diffie-Hellman public keys. An SSL/TLS client could possibly use this flaw
to perform a small subgroup attack. (CVE-2013-0443)
This erratum also upgrades the OpenJDK package to IcedTea6 1.11.6. Refer to
the NEWS file, linked to in the References, for further information.
All users of java-1.6.0-openjdk are advised to upgrade to these updated
packages, which resolve these issues. All running instances of OpenJDK Java
must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.6.0-openjdk packages that fix several security issues are\nnow available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "These packages provide the OpenJDK 6 Java Runtime Environment and the\nOpenJDK 6 Software Development Kit.\n\nMultiple improper permission check issues were discovered in the AWT,\nCORBA, JMX, and Libraries components in OpenJDK. An untrusted Java\napplication or applet could use these flaws to bypass Java sandbox\nrestrictions. (CVE-2013-0442, CVE-2013-0445, CVE-2013-0441, CVE-2013-1475,\nCVE-2013-1476, CVE-2013-0429, CVE-2013-0450, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0428)\n\nMultiple flaws were found in the way image parsers in the 2D and AWT\ncomponents handled image raster parameters. A specially-crafted image could\ncause Java Virtual Machine memory corruption and, possibly, lead to\narbitrary code execution with the virtual machine privileges.\n(CVE-2013-1478, CVE-2013-1480)\n\nA flaw was found in the AWT component\u0027s clipboard handling code. An\nuntrusted Java application or applet could use this flaw to access\nclipboard data, bypassing Java sandbox restrictions. (CVE-2013-0432)\n\nThe default Java security properties configuration did not restrict access\nto certain com.sun.xml.internal packages. An untrusted Java application or\napplet could use this flaw to access information, bypassing certain Java\nsandbox restrictions. This update lists the whole package as restricted.\n(CVE-2013-0435)\n\nMultiple improper permission check issues were discovered in the Libraries,\nNetworking, and JAXP components. An untrusted Java application or applet\ncould use these flaws to bypass certain Java sandbox restrictions.\n(CVE-2013-0427, CVE-2013-0433, CVE-2013-0434)\n\nIt was discovered that the RMI component\u0027s CGIHandler class used user\ninputs in error messages without any sanitization. An attacker could use\nthis flaw to perform a cross-site scripting (XSS) attack. (CVE-2013-0424)\n\nIt was discovered that the SSL/TLS implementation in the JSSE component\ndid not properly enforce handshake message ordering, allowing an unlimited\nnumber of handshake restarts. A remote attacker could use this flaw to\nmake an SSL/TLS server using JSSE consume an excessive amount of CPU by\ncontinuously restarting the handshake. (CVE-2013-0440)\n\nIt was discovered that the JSSE component did not properly validate\nDiffie-Hellman public keys. An SSL/TLS client could possibly use this flaw\nto perform a small subgroup attack. (CVE-2013-0443)\n\nThis erratum also upgrades the OpenJDK package to IcedTea6 1.11.6. Refer to\nthe NEWS file, linked to in the References, for further information.\n\nAll users of java-1.6.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0246", "url": "https://access.redhat.com/errata/RHSA-2013:0246" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS", "url": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS" }, { "category": "external", "summary": "859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "860652", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652" }, { "category": "external", "summary": "906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "907460", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0246.json" } ], "title": "Red Hat Security Advisory: java-1.6.0-openjdk security update", "tracking": { "current_release_date": "2024-11-14T12:14:01+00:00", "generator": { "date": "2024-11-14T12:14:01+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2013:0246", "initial_release_date": "2013-02-08T19:06:00+00:00", "revision_history": [ { "date": "2013-02-08T19:06:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-02-08T19:12:22+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T12:14:01+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.33.1.11.6.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.33.1.11.6.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.33.1.11.6.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.33.1.11.6.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.33.1.11.6.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.33.1.11.6.el5_9?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_id": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-demo@1.6.0.0-1.33.1.11.6.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_id": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-javadoc@1.6.0.0-1.33.1.11.6.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_id": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-devel@1.6.0.0-1.33.1.11.6.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.33.1.11.6.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_id": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-debuginfo@1.6.0.0-1.33.1.11.6.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_id": "java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk-src@1.6.0.0-1.33.1.11.6.el5_9?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "product": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "product_id": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-openjdk@1.6.0.0-1.33.1.11.6.el5_9?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" }, "product_reference": "java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-0424", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906813" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0424" }, { "category": "external", "summary": "RHBZ#906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)" }, { "cve": "CVE-2013-0425", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907344" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0425" }, { "category": "external", "summary": "RHBZ#907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0425" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)" }, { "cve": "CVE-2013-0426", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907346" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0426" }, { "category": "external", "summary": "RHBZ#907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0426" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)" }, { "cve": "CVE-2013-0427", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907455" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0427" }, { "category": "external", "summary": "RHBZ#907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0427" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)" }, { "cve": "CVE-2013-0428", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907207" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0428" }, { "category": "external", "summary": "RHBZ#907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0428" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)" }, { "cve": "CVE-2013-0429", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907460" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0429" }, { "category": "external", "summary": "RHBZ#907460", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)" }, { "cve": "CVE-2013-0432", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907219" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0432" }, { "category": "external", "summary": "RHBZ#907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0432" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)" }, { "cve": "CVE-2013-0433", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907456" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0433" }, { "category": "external", "summary": "RHBZ#907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)" }, { "cve": "CVE-2013-0434", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907453" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0434" }, { "category": "external", "summary": "RHBZ#907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0434" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)" }, { "cve": "CVE-2013-0435", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906892" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0435" }, { "category": "external", "summary": "RHBZ#906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0435" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)" }, { "cve": "CVE-2013-0440", "discovery_date": "2012-07-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "859140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0440" }, { "category": "external", "summary": "RHBZ#859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)" }, { "cve": "CVE-2013-0441", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907458" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing serialization restriction (CORBA, 7201066)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0441" }, { "category": "external", "summary": "RHBZ#907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0441" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing serialization restriction (CORBA, 7201066)" }, { "cve": "CVE-2013-0442", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906899" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0442" }, { "category": "external", "summary": "RHBZ#906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)" }, { "cve": "CVE-2013-0443", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907340" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0443" }, { "category": "external", "summary": "RHBZ#907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)" }, { "cve": "CVE-2013-0445", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906900" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0445" }, { "category": "external", "summary": "RHBZ#906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)" }, { "cve": "CVE-2013-0450", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906911" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0450" }, { "category": "external", "summary": "RHBZ#906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)" }, { "cve": "CVE-2013-1475", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "860652" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"IIOP type reuse management\" in ObjectStreamClass.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1475" }, { "category": "external", "summary": "RHBZ#860652", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1475", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1475" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)" }, { "cve": "CVE-2013-1476", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907457" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1476" }, { "category": "external", "summary": "RHBZ#907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1476" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)" }, { "cve": "CVE-2013-1478", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906894" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1478" }, { "category": "external", "summary": "RHBZ#906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)" }, { "cve": "CVE-2013-1480", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906904" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1480" }, { "category": "external", "summary": "RHBZ#906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:06:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0246" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.src", "5Server-5.9.Z:java-1.6.0-openjdk-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-debuginfo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-demo-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-devel-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-javadoc-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.i386", "5Server-5.9.Z:java-1.6.0-openjdk-src-1:1.6.0.0-1.33.1.11.6.el5_9.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)" } ] }
rhsa-2013_0236
Vulnerability from csaf_redhat
Published
2013-02-04 23:50
Modified
2024-11-14 12:14
Summary
Red Hat Security Advisory: java-1.6.0-sun security update
Notes
Topic
Updated java-1.6.0-sun packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
Oracle Java SE version 6 includes the Oracle Java Runtime Environment and
the Oracle Java Software Development Kit.
This update fixes several vulnerabilities in the Oracle Java Runtime
Environment and the Oracle Java Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch Update Advisory page, listed in the References section.
(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,
CVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,
CVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0432,
CVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438, CVE-2013-0440,
CVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445, CVE-2013-0446,
CVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,
CVE-2013-1480, CVE-2013-1481)
All users of java-1.6.0-sun are advised to upgrade to these updated
packages, which provide Oracle Java 6 Update 39. All running instances of
Oracle Java must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.6.0-sun packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 6 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2012-1541, CVE-2012-3213, CVE-2012-3342, CVE-2013-0351, CVE-2013-0409,\nCVE-2013-0419, CVE-2013-0423, CVE-2013-0424, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0427, CVE-2013-0428, CVE-2013-0429, CVE-2013-0430, CVE-2013-0432,\nCVE-2013-0433, CVE-2013-0434, CVE-2013-0435, CVE-2013-0438, CVE-2013-0440,\nCVE-2013-0441, CVE-2013-0442, CVE-2013-0443, CVE-2013-0445, CVE-2013-0446,\nCVE-2013-0450, CVE-2013-1473, CVE-2013-1475, CVE-2013-1476, CVE-2013-1478,\nCVE-2013-1480, CVE-2013-1481)\n\nAll users of java-1.6.0-sun are advised to upgrade to these updated\npackages, which provide Oracle Java 6 Update 39. All running instances of\nOracle Java must be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0236", "url": "https://access.redhat.com/errata/RHSA-2013:0236" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" }, { "category": "external", "summary": "859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "860652", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652" }, { "category": "external", "summary": "906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "906914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914" }, { "category": "external", "summary": "906916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916" }, { "category": "external", "summary": "906917", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917" }, { "category": "external", "summary": "906918", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918" }, { "category": "external", "summary": "906921", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921" }, { "category": "external", "summary": "906923", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923" }, { "category": "external", "summary": "906930", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930" }, { "category": "external", "summary": "906933", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933" }, { "category": "external", "summary": "906935", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935" }, { "category": "external", "summary": "907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "907223", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223" }, { "category": "external", "summary": "907224", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224" }, { "category": "external", "summary": "907226", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226" }, { "category": "external", "summary": "907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "907460", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0236.json" } ], "title": "Red Hat Security Advisory: java-1.6.0-sun security update", "tracking": { "current_release_date": "2024-11-14T12:14:07+00:00", "generator": { "date": "2024-11-14T12:14:07+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2013:0236", "initial_release_date": "2013-02-04T23:50:00+00:00", "revision_history": [ { "date": "2013-02-04T23:50:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-02-04T23:53:12+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T12:14:07+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:5::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "product": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.4.el5_9?arch=i586\u0026epoch=1" } } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.4.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.1.el6_3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-devel@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-demo@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-jdbc@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-src@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "product": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "product_id": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.6.0-sun-plugin@1.6.0.39-1jpp.1.el6_3?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586" }, "product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" }, "product_reference": "java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.3.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2012-1541", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906914" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from a third party that the issue is due to an interaction error in between the JRE plug-in for WebKit-based browsers and the Javascript engine, which allows remote attackers to execute arbitrary code by modifying DOM nodes that contain applet elements in a way that triggers an incorrect reference count and a use after free.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1541" }, { "category": "external", "summary": "RHBZ#906914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906914" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1541", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1541" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1541" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2012-3213", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907223" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scripting.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3213" }, { "category": "external", "summary": "RHBZ#907223", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907223" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3213", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3213" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3213" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Scripting)" }, { "cve": "CVE-2012-3342", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906917" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3342" }, { "category": "external", "summary": "RHBZ#906917", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906917" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3342", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3342" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3342" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0351", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906923" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0351" }, { "category": "external", "summary": "RHBZ#906923", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906923" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0351", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0351" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0351" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0409", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907226" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0409" }, { "category": "external", "summary": "RHBZ#907226", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907226" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0409", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0409" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0409" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (JMX)" }, { "cve": "CVE-2013-0419", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906918" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0419" }, { "category": "external", "summary": "RHBZ#906918", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906918" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0419", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0419" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0419" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0423", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906921" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0423" }, { "category": "external", "summary": "RHBZ#906921", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906921" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0423", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0423" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0423" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0424", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906813" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0424" }, { "category": "external", "summary": "RHBZ#906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)" }, { "cve": "CVE-2013-0425", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907344" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0425" }, { "category": "external", "summary": "RHBZ#907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0425" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)" }, { "cve": "CVE-2013-0426", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907346" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0426" }, { "category": "external", "summary": "RHBZ#907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0426" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)" }, { "cve": "CVE-2013-0427", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907455" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0427" }, { "category": "external", "summary": "RHBZ#907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0427" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)" }, { "cve": "CVE-2013-0428", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907207" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0428" }, { "category": "external", "summary": "RHBZ#907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0428" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)" }, { "cve": "CVE-2013-0429", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907460" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0429" }, { "category": "external", "summary": "RHBZ#907460", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)" }, { "cve": "CVE-2013-0430", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906930" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the installation process of the client.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0430" }, { "category": "external", "summary": "RHBZ#906930", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906930" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0430", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0430" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0430" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Install)" }, { "cve": "CVE-2013-0432", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907219" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0432" }, { "category": "external", "summary": "RHBZ#907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0432" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)" }, { "cve": "CVE-2013-0433", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907456" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0433" }, { "category": "external", "summary": "RHBZ#907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)" }, { "cve": "CVE-2013-0434", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907453" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0434" }, { "category": "external", "summary": "RHBZ#907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0434" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)" }, { "cve": "CVE-2013-0435", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906892" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0435" }, { "category": "external", "summary": "RHBZ#906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0435" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)" }, { "cve": "CVE-2013-0438", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906935" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0438" }, { "category": "external", "summary": "RHBZ#906935", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906935" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0438", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0438" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0438" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0440", "discovery_date": "2012-07-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "859140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0440" }, { "category": "external", "summary": "RHBZ#859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)" }, { "cve": "CVE-2013-0441", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907458" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing serialization restriction (CORBA, 7201066)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0441" }, { "category": "external", "summary": "RHBZ#907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0441" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing serialization restriction (CORBA, 7201066)" }, { "cve": "CVE-2013-0442", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906899" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0442" }, { "category": "external", "summary": "RHBZ#906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)" }, { "cve": "CVE-2013-0443", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907340" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0443" }, { "category": "external", "summary": "RHBZ#907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)" }, { "cve": "CVE-2013-0445", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906900" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0445" }, { "category": "external", "summary": "RHBZ#906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)" }, { "cve": "CVE-2013-0446", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906916" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than other CVEs listed in the February 2013 CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0446" }, { "category": "external", "summary": "RHBZ#906916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906916" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-0450", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906911" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0450" }, { "category": "external", "summary": "RHBZ#906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)" }, { "cve": "CVE-2013-1473", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906933" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38 allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1473" }, { "category": "external", "summary": "RHBZ#906933", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906933" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 and 7u13 (Deployment)" }, { "cve": "CVE-2013-1475", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "860652" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"IIOP type reuse management\" in ObjectStreamClass.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1475" }, { "category": "external", "summary": "RHBZ#860652", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1475", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1475" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)" }, { "cve": "CVE-2013-1476", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907457" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1476" }, { "category": "external", "summary": "RHBZ#907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1476" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)" }, { "cve": "CVE-2013-1478", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906894" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1478" }, { "category": "external", "summary": "RHBZ#906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)" }, { "cve": "CVE-2013-1480", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906904" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1480" }, { "category": "external", "summary": "RHBZ#906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)" }, { "cve": "CVE-2013-1481", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907224" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 6u39 (Sound)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1481" }, { "category": "external", "summary": "RHBZ#907224", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907224" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1481", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1481" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1481" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-04T23:50:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0236" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.4.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.i586", "5Server-Supplementary-5.9.Z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.4.el5_9.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Client-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6ComputeNode-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Server-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-demo-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-devel-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-jdbc-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-plugin-1:1.6.0.39-1jpp.1.el6_3.x86_64", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.i686", "6Workstation-Supplementary-6.3.z:java-1.6.0-sun-src-1:1.6.0.39-1jpp.1.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 6u39 (Sound)" } ] }
rhsa-2013_0247
Vulnerability from csaf_redhat
Published
2013-02-08 19:20
Modified
2024-11-14 12:14
Summary
Red Hat Security Advisory: java-1.7.0-openjdk security update
Notes
Topic
Updated java-1.7.0-openjdk packages that fix several security issues are
now available for Red Hat Enterprise Linux 5 and 6.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
These packages provide the OpenJDK 7 Java Runtime Environment and the
OpenJDK 7 Software Development Kit.
Multiple improper permission check issues were discovered in the AWT,
CORBA, JMX, Libraries, and Beans components in OpenJDK. An untrusted Java
application or applet could use these flaws to bypass Java sandbox
restrictions. (CVE-2013-0442, CVE-2013-0445, CVE-2013-0441, CVE-2013-1475,
CVE-2013-1476, CVE-2013-0429, CVE-2013-0450, CVE-2013-0425, CVE-2013-0426,
CVE-2013-0428, CVE-2013-0444)
Multiple flaws were found in the way image parsers in the 2D and AWT
components handled image raster parameters. A specially-crafted image could
cause Java Virtual Machine memory corruption and, possibly, lead to
arbitrary code execution with the virtual machine privileges.
(CVE-2013-1478, CVE-2013-1480)
A flaw was found in the AWT component's clipboard handling code. An
untrusted Java application or applet could use this flaw to access
clipboard data, bypassing Java sandbox restrictions. (CVE-2013-0432)
The default Java security properties configuration did not restrict access
to certain com.sun.xml.internal packages. An untrusted Java application or
applet could use this flaw to access information, bypassing certain Java
sandbox restrictions. This update lists the whole package as restricted.
(CVE-2013-0435)
Multiple improper permission check issues were discovered in the JMX,
Libraries, Networking, and JAXP components. An untrusted Java application
or applet could use these flaws to bypass certain Java sandbox
restrictions. (CVE-2013-0431, CVE-2013-0427, CVE-2013-0433, CVE-2013-0434)
It was discovered that the RMI component's CGIHandler class used user
inputs in error messages without any sanitization. An attacker could use
this flaw to perform a cross-site scripting (XSS) attack. (CVE-2013-0424)
It was discovered that the SSL/TLS implementation in the JSSE component
did not properly enforce handshake message ordering, allowing an unlimited
number of handshake restarts. A remote attacker could use this flaw to
make an SSL/TLS server using JSSE consume an excessive amount of CPU by
continuously restarting the handshake. (CVE-2013-0440)
It was discovered that the JSSE component did not properly validate
Diffie-Hellman public keys. An SSL/TLS client could possibly use this flaw
to perform a small subgroup attack. (CVE-2013-0443)
This erratum also upgrades the OpenJDK package to IcedTea7 2.3.5. Refer to
the NEWS file, linked to in the References, for further information.
All users of java-1.7.0-openjdk are advised to upgrade to these updated
packages, which resolve these issues. All running instances of OpenJDK Java
must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-openjdk packages that fix several security issues are\nnow available for Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "These packages provide the OpenJDK 7 Java Runtime Environment and the\nOpenJDK 7 Software Development Kit.\n\nMultiple improper permission check issues were discovered in the AWT,\nCORBA, JMX, Libraries, and Beans components in OpenJDK. An untrusted Java\napplication or applet could use these flaws to bypass Java sandbox\nrestrictions. (CVE-2013-0442, CVE-2013-0445, CVE-2013-0441, CVE-2013-1475,\nCVE-2013-1476, CVE-2013-0429, CVE-2013-0450, CVE-2013-0425, CVE-2013-0426,\nCVE-2013-0428, CVE-2013-0444)\n\nMultiple flaws were found in the way image parsers in the 2D and AWT\ncomponents handled image raster parameters. A specially-crafted image could\ncause Java Virtual Machine memory corruption and, possibly, lead to\narbitrary code execution with the virtual machine privileges.\n(CVE-2013-1478, CVE-2013-1480)\n\nA flaw was found in the AWT component\u0027s clipboard handling code. An\nuntrusted Java application or applet could use this flaw to access\nclipboard data, bypassing Java sandbox restrictions. (CVE-2013-0432)\n\nThe default Java security properties configuration did not restrict access\nto certain com.sun.xml.internal packages. An untrusted Java application or\napplet could use this flaw to access information, bypassing certain Java\nsandbox restrictions. This update lists the whole package as restricted.\n(CVE-2013-0435)\n\nMultiple improper permission check issues were discovered in the JMX,\nLibraries, Networking, and JAXP components. An untrusted Java application\nor applet could use these flaws to bypass certain Java sandbox\nrestrictions. (CVE-2013-0431, CVE-2013-0427, CVE-2013-0433, CVE-2013-0434)\n\nIt was discovered that the RMI component\u0027s CGIHandler class used user\ninputs in error messages without any sanitization. An attacker could use\nthis flaw to perform a cross-site scripting (XSS) attack. (CVE-2013-0424)\n\nIt was discovered that the SSL/TLS implementation in the JSSE component\ndid not properly enforce handshake message ordering, allowing an unlimited\nnumber of handshake restarts. A remote attacker could use this flaw to\nmake an SSL/TLS server using JSSE consume an excessive amount of CPU by\ncontinuously restarting the handshake. (CVE-2013-0440)\n\nIt was discovered that the JSSE component did not properly validate\nDiffie-Hellman public keys. An SSL/TLS client could possibly use this flaw\nto perform a small subgroup attack. (CVE-2013-0443)\n\nThis erratum also upgrades the OpenJDK package to IcedTea7 2.3.5. Refer to\nthe NEWS file, linked to in the References, for further information.\n\nAll users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0247", "url": "https://access.redhat.com/errata/RHSA-2013:0247" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.5/NEWS", "url": "http://icedtea.classpath.org/hg/release/icedtea7-2.3/file/icedtea-2.3.5/NEWS" }, { "category": "external", "summary": "859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "860652", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652" }, { "category": "external", "summary": "906447", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906447" }, { "category": "external", "summary": "906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "907218", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907218" }, { "category": "external", "summary": "907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "907460", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0247.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-openjdk security update", "tracking": { "current_release_date": "2024-11-14T12:14:05+00:00", "generator": { "date": "2024-11-14T12:14:05+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2013:0247", "initial_release_date": "2013-02-08T19:20:00+00:00", "revision_history": [ { "date": "2013-02-08T19:20:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-02-08T19:24:43+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T12:14:05+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.9-2.3.5.3.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.9-2.3.5.3.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-javadoc@1.7.0.9-2.3.5.3.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.9-2.3.5.3.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.9-2.3.5.3.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.9-2.3.5.3.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.9-2.3.5.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.9-2.3.5.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.9-2.3.5.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product_id": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.9-2.3.5.3.el6_3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.9-2.3.5.3.el6_3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "product_id": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.9-2.3.5.3.el5_9?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "product_id": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.9-2.3.5.3.el6_3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_id": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.9-2.3.5.3.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.9-2.3.5.3.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_id": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-javadoc@1.7.0.9-2.3.5.3.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.9-2.3.5.3.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.9-2.3.5.3.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.9-2.3.5.3.el5_9?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.9-2.3.5.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.9-2.3.5.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.9-2.3.5.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "product_id": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.9-2.3.5.3.el6_3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.9-2.3.5.3.el6_3?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "product": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "product_id": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-javadoc@1.7.0.9-2.3.5.3.el6_3?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "relates_to_product_reference": "5Server-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)", "product_id": "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-0424", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906813" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0424" }, { "category": "external", "summary": "RHBZ#906813", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906813" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0424", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0424" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0424" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: RMI CGIHandler XSS issue (RMI, 6563318)" }, { "cve": "CVE-2013-0425", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907344" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0428 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0425" }, { "category": "external", "summary": "RHBZ#907344", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907344" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0425", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0425" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0425" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664509)" }, { "cve": "CVE-2013-0426", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907346" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0428. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect \"access control checks\" in the logging API that allow remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0426" }, { "category": "external", "summary": "RHBZ#907346", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907346" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0426", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0426" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0426" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: logging insufficient access control checks (Libraries, 6664528)" }, { "cve": "CVE-2013-0427", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907455" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Libraries. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to interrupt certain threads that should not be interrupted.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0427" }, { "category": "external", "summary": "RHBZ#907455", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907455" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0427", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0427" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0427" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: invalid threads subject to interrupts (Libraries, 6776941)" }, { "cve": "CVE-2013-0428", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907207" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-0425 and CVE-2013-0426. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"incorrect checks for proxy classes\" in the Reflection API.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0428" }, { "category": "external", "summary": "RHBZ#907207", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907207" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0428", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0428" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0428" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)" }, { "cve": "CVE-2013-0429", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907460" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0429" }, { "category": "external", "summary": "RHBZ#907460", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907460" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0429", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0429" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: PresentationManager incorrectly shared (CORBA, 7141694)" }, { "cve": "CVE-2013-0431", "discovery_date": "2013-01-31T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906447" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX, aka \"Issue 52,\" a different vulnerability than CVE-2013-1490.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JMX Introspector missing package access check (JMX, 8000539, SE-2012-01 Issue 52)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0431" }, { "category": "external", "summary": "RHBZ#906447", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906447" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0431", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0431" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0431", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0431" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-01-27T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-05-25T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JMX Introspector missing package access check (JMX, 8000539, SE-2012-01 Issue 52)" }, { "cve": "CVE-2013-0432", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907219" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient clipboard access premission checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0432" }, { "category": "external", "summary": "RHBZ#907219", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907219" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0432", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0432" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0432" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient clipboard access premission checks (AWT, 7186952)" }, { "cve": "CVE-2013-0433", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907456" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0433" }, { "category": "external", "summary": "RHBZ#907456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907456" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0433", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0433" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: InetSocketAddress serialization issue (Networking, 7201071)" }, { "cve": "CVE-2013-0434", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907453" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAXP. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to the public declaration of the loadPropertyFile method in the JAXP FuncSystemProperty class, which allows remote attackers to obtain sensitive information.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0434" }, { "category": "external", "summary": "RHBZ#907453", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907453" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0434", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0434" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0434" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: loadPropertyFile missing restrictions (JAXP, 8001235)" }, { "cve": "CVE-2013-0435", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906892" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper restriction of com.sun.xml.internal packages and \"Better handling of UI elements.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0435" }, { "category": "external", "summary": "RHBZ#906892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906892" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0435", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0435" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0435" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)" }, { "cve": "CVE-2013-0440", "discovery_date": "2012-07-25T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "859140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect availability via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to CPU consumption in the SSL/TLS implementation via a large number of ClientHello packets that are not properly handled by (1) ClientHandshaker.java and (2) ServerHandshaker.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0440" }, { "category": "external", "summary": "RHBZ#859140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=859140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0440", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0440" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: CPU consumption DoS via repeated SSL ClientHello packets (JSSE, 7192393)" }, { "cve": "CVE-2013-0441", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907458" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-1476 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via certain methods that should not be serialized, aka \"missing serialization restriction.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing serialization restriction (CORBA, 7201066)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0441" }, { "category": "external", "summary": "RHBZ#907458", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907458" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0441", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0441" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0441" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing serialization restriction (CORBA, 7201066)" }, { "cve": "CVE-2013-0442", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906899" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0442" }, { "category": "external", "summary": "RHBZ#906899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906899" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 7192977)" }, { "cve": "CVE-2013-0443", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907340" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality and integrity via vectors related to JSSE. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect validation of Diffie-Hellman keys, which allows remote attackers to conduct a \"small subgroup attack\" to force the use of weak session keys or obtain sensitive information about the private key.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0443" }, { "category": "external", "summary": "RHBZ#907340", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907340" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient Diffie-Hellman public key checks (JSSE, 7192392)" }, { "cve": "CVE-2013-0444", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907218" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient checks for cached results\" by the Java Beans MethodFinder, which might allow attackers to access methods that should only be accessible to privileged code.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MethodFinder insufficient checks for cached results (Beans, 7200493)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0444" }, { "category": "external", "summary": "RHBZ#907218", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907218" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0444", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0444" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0444", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0444" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: MethodFinder insufficient checks for cached results (Beans, 7200493)" }, { "cve": "CVE-2013-0445", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906900" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to an improper check of \"privileges of the code\" that bypasses the sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0445" }, { "category": "external", "summary": "RHBZ#906900", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906900" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: insufficient privilege checking issue (AWT, 8001057)" }, { "cve": "CVE-2013-0450", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906911" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper checks of \"access control context\" in the JMX RequiredModelMBean class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-0450" }, { "category": "external", "summary": "RHBZ#906911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-0450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-0450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: RequiredModelMBean missing access control context checks (JMX, 8000537)" }, { "cve": "CVE-2013-1475", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "860652" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"IIOP type reuse management\" in ObjectStreamClass.java.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1475" }, { "category": "external", "summary": "RHBZ#860652", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=860652" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1475", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1475" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1475" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: IIOP type reuse sandbox bypass (CORBA, 8000540, SE-2012-01 Issue 50)" }, { "cve": "CVE-2013-1476", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "907457" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2013-0441 and CVE-2013-1475. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass Java sandbox restrictions via \"certain value handler constructors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1476" }, { "category": "external", "summary": "RHBZ#907457", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=907457" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1476", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1476" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1476" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: missing ValueHandlerImpl class constructor access restriction (CORBA, 8000631)" }, { "cve": "CVE-2013-1478", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906894" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" that can trigger an integer overflow and memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1478" }, { "category": "external", "summary": "RHBZ#906894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906894" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1478", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1478" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (2D, 8001972)" }, { "cve": "CVE-2013-1480", "discovery_date": "2013-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "906904" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"insufficient validation of raster parameters\" in awt_parseImage.c, which triggers memory corruption.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1480" }, { "category": "external", "summary": "RHBZ#906904", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=906904" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1480", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1480" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1480" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" } ], "release_date": "2013-02-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-02-08T19:20:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0247" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.src", "5Server-5.9.Z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.i386", "5Server-5.9.Z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el5_9.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.9-2.3.5.3.el6_3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.9-2.3.5.3.el6_3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.9-2.3.5.3.el6_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: image parser insufficient raster parameter checks (AWT, 8002325)" } ] }
ghsa-pr3m-j4vm-4x8c
Vulnerability from github
Published
2022-05-05 02:49
Modified
2022-05-05 02:49
Details
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.
{ "affected": [], "aliases": [ "CVE-2013-0429" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2013-02-02T00:55:00Z", "severity": "HIGH" }, "details": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue involves the creation of a single PresentationManager that is shared across multiple thread groups, which allows remote attackers to bypass Java sandbox restrictions.", "id": "GHSA-pr3m-j4vm-4x8c", "modified": "2022-05-05T02:49:03Z", "published": "2022-05-05T02:49:03Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0429" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16649" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19300" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19342" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19457" }, { "type": "WEB", "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0056" }, { "type": "WEB", "url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=907460" }, { "type": "WEB", "url": "http://icedtea.classpath.org/hg/release/icedtea6-1.11/file/icedtea6-1.11.6/NEWS" }, { "type": "WEB", "url": "http://icedtea.classpath.org/hg/release/icedtea7-forest-2.3/corba/rev/c1ed8145c1b8" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00014.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00001.html" }, { "type": "WEB", "url": "http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2" }, { "type": "WEB", "url": "http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2" }, { "type": "WEB", "url": "http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-0236.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-0237.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-0245.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-0246.html" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-0247.html" }, { "type": "WEB", "url": "http://security.gentoo.org/glsa/glsa-201406-32.xml" }, { "type": "WEB", "url": "http://www.kb.cert.org/vuls/id/858729" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:095" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/57710" }, { "type": "WEB", "url": "http://www.us-cert.gov/cas/techalerts/TA13-032A.html" } ], "schema_version": "1.4.0", "severity": [] }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.